M1 – IT Security Lead – Business Partner

Job: M1 – IT Security Lead – Business Partner 

Job Family: Technology > Sub-family: Cybersecurity 

Reports to (role): CTSO Manager 

Objective of the Role 

As the IT Security Business Partner Lead, you will be responsible for leading the IT security business partnership function within our fintech product development company. This senior role involves managing a team of IT security business partners, ensuring the protection of our infrastructure, cloud environments, development processes, and compliance with regulatory requirements. You will play a critical role in enhancing the security maturity of our products and services, fostering collaboration between IT and security teams, and driving strategic security initiatives. 

Main Responsibilities 

1. Lead and mentor a team of cybersecurity business partners.
2. Promote diversity, equity, and inclusion within the cybersecurity team. 
3. Ensure the team is aligned with the company's strategic objectives and goals. 
4. Act as a representative and spokesperson for Information Security to the business, technology teams, and the engineering department. 
5. Manage new business and/or product projects that require security considerations and their integration into processes. 
6. Develop and implement indicators to measure business security. 
7. Manage relationships between departments, serving as the point of contact with related areas such as CTSO for operational security or CISO for governance and compliance, maintaining constant communication. 
8. Oversee the dissemination and compliance with Information Security Policies and Procedures. 
9. Lead and monitor compliance with internal and external audits, as well as regulatory requirements related to security. 
10. Perform periodic risk reviews and coordinate mitigation plans with various IT and Information Security teams. 
11. Ensure the appropriate level of security maturity through continuous risk assessments and vulnerability management. 
12. Escalate any threat that jeopardizes the confidentiality, integrity, and availability of the business and its clients to the Monitoring and Response (SOC) team. 
13. Participate in incident response activities to provide support for more timely and effective containment. 
14. Participate in internal committees and business rituals to understand vision and direction, identifying security needs to be implemented. 
15. Design and provide monthly executive presentations on activity progress to the CTSO and CISO. 
16. Stay updated on the latest security technologies, cryptography, secure development practices, and application security. 
17. Drive innovation by exploring new tools, techniques, and best security practices. 
18. Provide training and guidance to team members and other stakeholders on best security practices. 
19. Autonomous work culture: Actively create an autonomous work culture and collaborate in an agile and efficient environment. 
20. Manage the team under your responsibility and continuously measure their performance through key objectives. 

Required Knowledge and Experience 

1. Bachelor's degree in computer science, Information Technology, or a related field. 
2. Over 8+ years of experience in managing security controls across various layers: data, end-user devices, cloud, infrastructure, perimeter networks, and web and mobile applications. 
3. Deep knowledge of security technologies, cryptography, secure development, and application security. 
4. Familiarity with security audits, regulatory compliance, and security risks. 
5. Proven experience in project management, including planning, execution, and monitoring of security initiatives. 
6. Desirable security certifications: CISSP, CISA, CISM, and PCI. 
7. Advanced English proficiency. 

Spin está comprometida con un lugar de trabajo diverso e inclusivo. 
Somos un empleador que ofrece igualdad de oportunidades y no discrimina por motivos de raza, origen nacional, género, identidad de género, orientación sexual, discapacidad, edad u otra condición legalmente protegida. 
Si desea solicitar una adaptación, notifique a su Reclutador.