Head of Security and Data Governance

WHAT WE DO | Our talented teams create tech that connects brands to people via meaningful content that impacts their lives in positive ways. By understanding where the markets are going and where technology fits in; we use our knowledge to identify solutions that boost businesses and shift user experiences.

WHY WE’RE DIFFERENT | What makes us a leader in our industry, and different from other international digital tech companies, is our ability to tailor or custom create our offering to solve business challenges

WHERE YOU FIT IN | We aim to build an inspiring organization with an engaged and high performing culture. We believe in possibilities. We connect to the future. Think unlimited digital potential, global reach, limitless content, unreal experiences, real connections… now imagine the direct impact you could have in this landscape. If you eager to work in an inspiring, dynamic environment and collaborate with like-minded people, we want to hear from you!

The Head of Security & Data Governance is a leadership role. The main purpose of the job is to take responsibility for leading the strategic planning and delivery of the cross-company approach for the governance and management of information security risk and compliance. This role is owning the security policy & procedures inside the organization and leading the creation, updates, implementation and monitoring of these.

Leading candidates will be able to demonstrate a proven track record of contributing to the strategic planning for information security in a complex environment and for developing and implementing organization-level policies, standards and guidance.

Additional responsibilities include:

• Develop and manage information security training and awareness programms to a diverse range of stakeholders
• Evaluate, select, design and configure security infrastructure systems in our cloud environments for multiple internal organizations.
• Support and conduct internal audits, help mitigate findings and implement improvement measures.
• Oversee cost management for security and data governance activities: resource planning, estimation, budgeting and control.
• Identify, integrate, monitor and improve infosec controls by understanding business processes and leading the definition of security requirements & policies as well as reviews of system to determine if they are compliant with the policies & procedures.
• Support the Senior Software/System-Engineers to enhance the security implementation for the organization including systems, networks, services and applications. This should include the incorporation of security best practices and configuration management.
• Design and oversee mission-critical enterprise applications such as Firewalls, SIEM, DLP, log management and other technical controls.
• Troubleshoot security related issues and lead the Information Governance Incident Management inside the organization.
• Lead and oversee implementation & customer projects, security audits & questionnaires and ongoing support of security operations
• Oversee our security, backup, redundancy, disaster recovery strategies and their current state of implementation across the company.
• Conduct network, system & applications tests via simulation or other means to highlight and find any weaknesses that may be exploited.

Requirements

The ideal candidate should demonstrate ability to establish relationships and influence key stakeholders at all levels of the organization in order to build the reputation of Information Security and influence internal and external stakeholders.

It is essential that the successful candidate exhibits excellent analytical skills, ability to manage multiple projects under strict timelines, as well as the ability to work well in a demanding, dynamic environment and meet overall objectives. You will be a visionary team leader who is self-driven and able to work independently. Those with experience in the mobile digital entertainment industry would be at a distinct advantage

Other requirements include:

• Minimum of 5 years’ work experience in the role of the Head of Security & Data Governance
• BS degree in Engineering or Information Technology related field
• Minimum of 8 years’ work experience in engineering or IT role
• Minimum of 4 years´ experience in Security design/testing.
• Hands-on experience in at least two or more; AWS, Azure, GCP or on-premise Data Centre.
• Good understanding of AWS cloud technologies, familiarity with DevOps.
• Experience with common programming and scripting languages, such as Java, Python, Java/Typescripts, PowerShell, Bash, etc.
• Knowledge of conducting security checks (static and dynamic code analysis, vulnerability analysis in applications and penetration tests, security component analysis)
• Cloud Security Certifications like AWS Certified Security Specialty or general Security Certifications such as CSSLP, CISSP, CISA, CISM, Security+ etc. are preferred
• Passion for Security & DevSecOps and the goal to drive this along the organization
• Communications skills including the ability to understand client process in any area in detail, excellent coordination skills and writing skills to produce formal documents.
• High level of personal integrity, as well as the ability to professionally handle confidential matters, and show an appropriate level of judgment and maturity
• Would be plus points if you have experience with:
• You are fluent in English, while Arabic or German proficiency is advantageous

o Implementing and managing HIDS/NIDS, SOC or SIEM solutions.

o Vulnerability management, patching automation and understanding of application security techniques.

o Knowledge of information security standards like ISO 27001, PCI-DSS, ENESA

o Applied knowledge of working in GDPR and similar legislative environments with respect to information security

Benefits

• Paid Time Off
• Health Insurance
• Flat hierarchies and short decision-making paths
• Becoming a part of a highly motivated, young, international team spread across 3 continents
• An attractive location in a creative and modern office in downtown Madrid