Information Security Manager

Our client is seeking an experienced Information Security Manager to join their Information Security team. In this role, you will be responsible for the day-to-day execution of compliance and assurance programs, focusing primarily on PCI DSS v4.0.1 and SOC 2, while also expanding your expertise across ISO 27001, GDPR / UK GDPR, and various US state privacy regulations such as CCPA.

Key Responsibilities:

• Own and manage compliance initiatives related to PCI DSS and SOC 2.
• Collaborate with Cloud Engineering, DevOps, IT, Legal, and Product teams to ensure security measures are integrated into all processes.
• Develop and implement security policies and procedures to safeguard sensitive information.
• Conduct risk assessments and audits to identify vulnerabilities and ensure compliance with regulatory requirements.
• Stay updated on the latest security trends and regulatory changes to adapt strategies accordingly.

Required Skills & Qualifications:

• Proven experience in information security management, with a strong focus on compliance frameworks.
• In-depth knowledge of PCI DSS, SOC 2, ISO 27001, GDPR, and CCPA.
• Strong analytical and problem-solving skills.
• Excellent communication and collaboration abilities.
• Relevant certifications such as CISSP, CISM, or CISA are preferred.

Experience:

• 5-8 years of experience in information security or a related field.

What we offer:

Our client provides a dynamic work environment, opportunities for professional growth, and the chance to work with cutting-edge technology in a collaborative team setting.