VP- Chief Information Security Officer

London, UK

Picsart is looking for a Chief Information Security Officer (CISO) responsible for setting Picsart’s Information strategy, championing the standards across the group globally, who will be involved in all aspects of Information Security. As a key member of the management team, you will support the Information Security team in creating, setting, and ensuring adherence to the strategy. The strategy will encompass how we protect our business and our products and services from security threats and vulnerabilities, ensuring our products and services meet our security obligations, and ensuring material third party partners also meet our obligations.

 

Main Activities

  • Development and maintenance of information security policy framework.
  • Maintain a continual improvements programme.
  • Maintain governance to ensure compliance with the policies and processes.
  • Provision of guidance and a structured approach for meeting customer’s security requirements.
  • Participation in the evaluation, selection and implementation of security products and technologies.
  • Review of compliance of PicArt’s product suite with customer requirements, data protection and data privacy legislation and industry best practices.
  • Ownership of audit activities to ensure the business is appropriately prepared.
  • Respond to RFPs and support sales activities, identifying any deviation from policies, or commercial impact.
  • Lead incident management and resolution as required as well as identify and deliver areas of improvement.
  • Assurance and verification that all material suppliers are operating in accordance with the agreed security contractual terms.
  • Verification that systems are developed, operated and maintained in line with PicsArt and customer data security policies.
  • Provide leadership and direction to all team members, ensuring the most efficient use of their skills and abilities.
  • Present to leadership regularly on the security posture of the business.

 

Key Skills

  • Strong presentation skills; clear written and verbal communication skills with the ability to distinguish between audiences.
  • Demonstrates a team focus with the ability to manage, guide, motivate and develop team members.
  • Experienced in working for an international technology company, which provides SaaS services in multiple geographies to the B2C and B2B markets.
  • Highly organized with excellent attention to detail and the ability to prioritize simultaneous activities and meet agreed deadlines.
  • Experience of deploying a security framework in a hybrid cloud and on-premises environment.
  • Ability to build and maintain strong relationships with a wide range of internal and external stakeholder groups and suppliers as well as internal clients and executives.
  • Ability to work independently and to attend meetings outside of core business hours.

 

Qualifications And Experience

  • A recognized information security leader with broad expertise in technology and security frameworks.
  • Experience of deploying a security framework, in a Dev/Ops cloud environment. (AWS, Azure)
  • Understanding of Data Protection legislations for the areas in which we operate. (CCPA but not limited to,, GDPR, POPI)
  • Understanding and experience applying one or more security industry frameworks and standards (ISO27001, PCI DSS, SOC2, SSAE-18, NIST).
  • Industry security certifications (CISSP, CEH, CISM/CISA), or equivalent and networking qualification.
  • Familiarity with OWASP and control assurance standards.
  • Good knowledge of network protocols and network protection techniques (network & web firewalls, content filtering)
  • Data Leakage Prevention technologies, including specific cloud-related data controls.
  • Experience of Cloud services and cloud-specific Information Security challenges and practices.
  • Experience leading IT disaster recovery testing and business continuity planning.

 

 

#LI-TM1

 

What we seek and value most in our candidates 
Professionalism in both soft and hard skills; motivation to grow, learn and share, positive attitude, flexibility, transparency, ownership and the most important - passion and commitment.  
Picsart is proud to be an equal opportunity employer. We do not discriminate on the basis of race, religion, color, national origin, gender, sexual orientation, age, marital status, veteran status, or disability status. We also consider qualified applicants with criminal histories, consistent with applicable federal, state and local law. We are committed to providing reasonable accommodation to employees who have protected disabilities consistent with local law. 
Picsart, Inc. is an E-Verify Employer in the US. Please click here for the E-Verify Poster in English or Spanish. For information regarding your Right To Work, please click here for English or Spanish.
ABOUT US 
Picsart is the world’s largest digital creation platform and a top 20 most downloaded app. Every month, the Picsart community creates, remixes, and shares billions of visual stories using the company’s powerful and easy-to-use editing tools. Picsart has amassed one of the largest open-source content collections in the world, including free-to-edit photos, stickers, backgrounds, templates, and more. Picsart is available in 30 languages for free and as a subscription on iOS, Android, Windows devices and on the Web. Headquartered in Miami, with offices around the world, Picsart is backed by SoftBank, Sequoia Capital, DCM Ventures, Insight Partners, and others. Download the app or visit picsart.com for more information.

* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰

Tags: Android AWS Azure CCPA CEH CISA CISM CISSP Cloud Compliance Firewalls GDPR Governance iOS ISO 27001 NIST OWASP PCI DSS Privacy SaaS SOC 2 Strategy Vulnerabilities Windows

Region: Europe
Country: United Kingdom
Job stats:  12  1  0
Category: Leadership Jobs

More jobs like this

Explore more InfoSec / Cybersecurity career opportunities

Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.