isecjobs.com

Head of Information Security

Berlin

Full Time Executive-level / Director EUR 97K - 180K * est.
Company logo

Hawk

View all jobs at Hawk

Apply now Apply later

About Us 

Hawk is the leading provider of AI-supported anti-money laundering and fraud detection technology. Banks and payment providers globally are using Hawk’s powerful combination of traditional rules and explainable AI to improve the effectiveness of their AML compliance and fraud prevention by identifying more crime while maximizing efficiency by reducing false positives. With our solution, we are playing a vital role in the global fight against Money Laundering, Fraud, or the financing of terrorism. We offer a culture of mutual trust, support and passion – while providing individuals with opportunities to grow professionally and make a difference in the world. 

Your Mission: 

As the Head of Information Security, you will be responsible for building and leading Hawk's information security program. You will develop and execute a comprehensive security strategy, manage a team of security professionals, and ensure the protection of Hawk's information assets across all systems that we operate for our clients from the financial sector as well as in general our parent company in Germany and our affiliates and subsidiaries in USA, UK and Singapore. This leadership role requires a strong technical background, strategic thinking, and the ability to effectively communicate security concepts to both technical and non-technical audiences. 

Your Responsibilities: 

  • Provide leadership and direction to the InfoSec team, fostering a culture of collaboration, innovation, and continuous improvement. 

  • Develop, implement, and maintain the organization’s information security strategy, policies, and procedures, aligning them with business objectives and risk tolerance. 

  • Oversee the maintenance and expansion of existing security certifications (ISO 27001, SOC 2) and drive initiatives for future certifications (e.g., ISO 22301, DORA). 

  • Direct regular security audits, risk assessments, and vulnerability analyses, ensuring that findings are addressed effectively and efficiently. 

  • Lead security incident response efforts, including complex investigations and remediation, and develop robust incident response plans and playbooks. 

  • Ensure compliance with relevant industry standards, regulations, and legal requirements, proactively adapting to changes in the regulatory landscape. 

  • Establish and maintain security awareness training programs, promoting a strong security culture across the organization. 

  • Oversee the design, implementation, and management of security systems and technologies, ensuring their effectiveness and integration. 

  • Collaborate with Engineering, Product, and other departments to integrate security into the software development lifecycle (SDLC) and business processes. 

  • Stay abreast of the latest security threats, technologies, and industry trends, evaluating their potential impact on Hawk and driving innovation in security practices. 

  • Manage relationships with external security vendors and service providers, ensuring they meet Hawk's security requirements and contribute to the overall security posture. 

  • Provide security expertise and support to the sales process, effectively communicating Hawk's security posture to (potential) clients and addressing their security concerns. 

Your Profile: 

  • Bachelor's or Master's degree in Information Security, Computer Science, or a related field. 

  • A minimum of 9 years of experience in information security, with demonstrated leadership experience. Work experience with a regulated financial institution, or as a technical service provider in the financial sector is a plus. 

  • Strong technical background with in-depth knowledge of security architecture, technologies, best practices and IT-regulations that apply to financial institutions or its outsourcing partners. 

  • In-depth knowledge of relevant regulatory requirements and industry standards (ISO 27001, SOC 2, GDPR, DORA, etc.). 

  • Experience with cloud security (AWS, Google etc.), application security, and DevSecOps practices is a significant plus. 

  • Proven experience in developing and implementing security strategies and programs. 

  • Extensive experience with risk management, security audits, and vulnerability management. 

  • Excellent leadership, communication, and interpersonal skills, with the ability to influence and collaborate across all levels of the organization.    

  • Strong analytical, problem-solving, and decision-making skills.    

  • Relevant certifications such as CISSP, CISM, or equivalent are highly desirable. 

 

Apply now Apply later

* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰

Job stats:  7  1  0
Category: Leadership Jobs

Tags: Application security Audits AWS CISM CISSP Cloud Compliance Computer Science DevSecOps GDPR Incident response ISO 22301 ISO 27001 Risk assessment Risk management SDLC Security strategy SOC SOC 2 Strategy Vulnerability management

Region: Europe
Country: Germany

More jobs like this

« Back to job search To the top ↑

Explore more career opportunities

Find even more open roles below ordered by popularity of job title or skills/products/technologies used.

Information Security Specialist jobsSenior Cloud Security Engineer jobsInformation System Security Officer jobsSenior Security Analyst jobsSenior Cybersecurity Engineer jobsSystems Administrator jobsInformation Security Manager jobsSystems Engineer jobsSenior Information Security Analyst jobsSenior Network Security Engineer jobsIT Security Engineer jobsCyber Security Specialist jobsIT Security Analyst jobsChief Information Security Officer jobsSecurity Specialist jobsSecurity Consultant jobsInformation System Security Officer (ISSO) jobsInformation Systems Security Engineer jobsSenior Information Security Engineer jobsSenior Cyber Security Engineer jobsSenior Product Security Engineer jobsCyber Threat Intelligence Analyst jobsCyber Security Architect jobsThreat Intelligence Analyst jobsSenior Software Engineer jobs
Java jobsEncryption jobsEDR jobsBash jobsTS/SCI jobsIDS jobsIPS jobsThreat detection jobsSQL jobsTerraform jobsSDLC jobsSplunk jobsMalware jobsTop Secret jobsFinance jobsDocker jobsForensics jobsSOC 2 jobsRMF jobsActive Directory jobsCompTIA jobsIntrusion detection jobsITIL jobsOWASP jobsGIAC jobs
DoDD 8570 jobsVPN jobsAnsible jobsHIPAA jobsOSCP jobsIT infrastructure jobsData Analytics jobsTCP/IP jobsUNIX jobsCCSP jobsCRISC jobsSAP jobsBanking jobsSANS jobsSOAR jobsSOX jobsJavaScript jobsMITRE ATT&CK jobsSecurity strategy jobsClearance Required jobsMachine Learning jobsZero Trust jobsDNS jobsJira jobsPolygraph jobs