Information Security Lead
Wellington, Wellington, New Zealand
Timely
Join over 50,000 beautiful people in our supportive and inclusive community using Timely to manage, protect and grow their businesses.đ Timely has come a long way since our inception in 2011. Weâve grown an online community of over 50,000 beauty professionals across 100 countries that use our cloud-based business management software to book over 35 million appointments a year.
In May 2021, we were thrilled to join forces with EverCommerce, a US-based leading service commerce platform who offer a suite of integrated SAAS solutions to over 500,000 customers globally.
Now, weâre ready to level up and take our success to the next level đ€©
We are embarking on a growth phase and have a number of new roles available to ensure we have the best skillset to achieve our refreshed strategic goals.
If this role doesnât sound quite right for you, make sure to check out our Careers page to see if we have another opportunity that could be your perfect next step.
đ Our Mission? Build the leading platform for beauty professionals.
Weâre more than a software company, weâre creating a community to power the worldâs most loved client experience, and weâre looking for the right people to jump on the rocket ship with us and lift off.
đ This is where you come in!
As the Information Security Lead, youâll have to ensure that security is taken into account by everybody, in every team, every project and every release. Youâre passionate about security and advocate for a security mindset throughout the whole company, supported by a cross-functional team of motivated people and by our parent company's security and compliance team.
You will know how to take perspective well as understand and apply technical concepts. You're autonomous and you can identify risks and deliver thoughtful action plans and solutions using current methodologies, frameworks and technologies.
You donât need to be an expert in all the areas of security but youâll need to have the will to learn new skills. You will aim to provide a center of excellence for Security and to enable other teams to deliver secure solutions.
Requirements
đ« Weâd love to hear from you if you haveâŠ
- The ability to operate autonomously. This means you can prioritise your time effectively and make independent decisions, but youâll know when to seek guidance/help when needed.
- Going above and beyond just âdoing the jobâ. You should constantly be seeking process improvements, including automation of repetitive tasks and security controls.
- Knowledge of security best practices, frameworks and regulations. Youâll be expected to keep up to date with the latest developments in the IT security field, trends, vulnerabilities, and security frameworks (NIST, ISO27k) PCI DSS knowledge would be helpful.
- A solid grasp of application security and Agile practices and concepts
- Familiarity with automation and integration tools, understanding API systems, CI/CD, data flow across systems
- Cloud security experience would give you a huge jump-start - since we're almost exclusively running on the Microsoft Azure platform and making the most of Microsoft E5 Security Licenses.
- Familiarity or a willingness to learn object oriented programming, scripting and infrastructure as code languages e.g. Python, Powershell, Terraform
- Familiarity with infrastructure security to perform architecture reviews
- Your own ideas and suggestions to enhance, improve and generally make our IT systems awesome!
- Optional: Tertiary qualified with a degree in Computer Science (or something similar), CISSP, SANS
đ Research shows that while men apply to jobs when they meet ~60% of criteria, women and those in underrepresented groups tend to only apply when they check every box. So if you think you have what it takes but don't meet every single bullet point above, please still get in touch. We'd love to have a chat and see if you could be a great fit.
Benefits
đ Why join us?
We lead with inclusion and use our values to inform our decisions. We bring our whole selves to work and celebrate the things that make us unique.
We trust our team to work where they are the most productive. Youâll have the flexibility to work from home or the office and utilise #timelylife. We have office space in Auckland, Wellington & Dunedin, but you can work from anywhere in NZ for this role and we provide a high-spec home office set up.
We set a high bar and support our team to innovate and never stop learning. Youâll enjoy a professional development budget to fuel your growth, and an annual wellness allowance to fund the things that support your wellbeing. To us, people experience means creating an environment where you can flourish and achieve.
đ The nitty gritty
- This role is full time, permanent and can be based anywhere in New Zealand.
- You must be legally entitled to work in New Zealand.
- The interviews for this role will total around 2.5 hours.
- Applications close when we find the right person!
đ Ready to apply?
People join us because they want to belong to a company that walks the walk and actually puts their people first. Sounds good to you? Donât wait any longer...click âApplyâ and letâs chat!
Let us know in your application any considerations which would enable your experience in our recruitment process to be more inclusive, such as non-traditional application formats.
Tags: Agile APIs Application security Automation Azure CI/CD CISSP Cloud Compliance Computer Science NIST PCI DSS PowerShell Python SaaS SANS Scripting Terraform Vulnerabilities
Perks/benefits: Career development Flex vacation Home office stipend Startup environment Wellness
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Information Security Specialist jobs
- Open Senior Cyber Security Engineer jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Principal Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Staff Security Engineer jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Product Security Engineer jobs
- Open Manager Pentest H/F jobs
- Open Cyber Security Specialist jobs
- Open Senior Information Security Analyst jobs
- Open Cybersecurity Analyst jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Chief Information Security Officer jobs
- Open IT Security Analyst jobs
- Open Cybersecurity Consultant jobs
- Open Consultant SOC / CERT H/F jobs
- Open Senior Information Security Engineer jobs
- Open Security Specialist jobs
- Open Senior Penetration Tester jobs
- Open Security Researcher jobs
- Open Cybersecurity Specialist jobs
- Open Senior Security Architect jobs
- Open Sr. Security Engineer jobs
- Open IT Security Engineer jobs
- Open CISM-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open ISO 27001-related jobs
- Open Pentesting-related jobs
- Open Application security-related jobs
- Open Agile-related jobs
- Open GCP-related jobs
- Open Vulnerability management-related jobs
- Open SaaS-related jobs
- Open CISA-related jobs
- Open Analytics-related jobs
- Open IAM-related jobs
- Open Threat intelligence-related jobs
- Open APIs-related jobs
- Open Java-related jobs
- Open Security assessment-related jobs
- Open Malware-related jobs
- Open DevOps-related jobs
- Open Security Clearance-related jobs
- Open IDS-related jobs
- Open EDR-related jobs
- Open CEH-related jobs
- Open Forensics-related jobs
- Open Kubernetes-related jobs