Global InfoSec Manager

Company Description

Quantanite is a customer experience (CX)solutions company that helpsfast-growing companies
and leading global brandsto transformand grow. We do thisthrough a collaborative and
consultative approach,rethinking business processes and ensuring our clients employ the
optimalmix of automationand human intelligence.We are an ambitiousteamof professionals
spread acrossfour continents and looking to disrupt ourindustry by delivering seamless
customerexperiencesforour clients,backed-upwithexceptionalresults.We havebig dreams,
and are constantly looking for new colleaguesto join us who share our values, passion and
appreciationfordiversity.

Job Description

1. Information & Cyber Security
• Define and maintain the Information Security Policy and framework.
• Implement and manage technical security controls (firewalls, endpoint protection, SIEM,
DLP, etc.).
• Conduct vulnerability assessments and penetration testing.
• Oversee incident detection, response, and recovery.
• Monitor network, cloud, and endpoint security.


2. Data Security & Protection
• Implement data classification, encryption, and access control mechanisms.
• Own and maintain Data Loss Prevention (DLP) systems and secure data handling
practices.
• Ensure secure development practices across tech platforms (DevSecOps).

3. Technology Risk Management
• Identify and mitigate IT and cyber risks.
• Conduct technical risk assessments and report to risk/governance committees.
• Maintain a threat intelligence and response program.

4. Compliance Support (Technical Enablement)
• Provide technical evidence and control implementation for regulatory and compliance
audits (e.g., ISO 27001, SOC 2, GDPR).
• Collaborate with the Compliance Leader for policy enforcement via tools.

5. Security Awareness
• Run phishing simulations and cybersecurity training in partnership with HR and
Compliance.

6. Governance Collaboration
• Participate in Enterprise Risk Audit meetings.
• Serve as technical liaison with compliance, support functions and operations
stakeholders.

7. Strategy & Leadership
• Define and own the global information security strategy, aligned with business goals and
regulatory requirements.
• Act as the point of contact for security incidents, investigations, and client escalations.

Qualifications

Bachelor’s degree in Computer Science, Cybersecurity, or related field.

Additional Information

• 10+ years of experience in information security, including 2–3 years in a leadership role.
• Hands-on experience with security frameworks (ISO 27001, SOC 2, NIST), security tools
(EDR, DLP, SIEM), and auditing processes.
• Strong understanding of network and application security, including cloud (Azure/GCP),
identity management, and secure coding practices.
• Know-how of the AI landscape from a cybersecurity perspective—understanding risks
around AI model security, data exposure, and AI system misuse is a plus.

• Proven ability to communicate security concepts to non-technical stakeholders.
• Experience managing security incidents and regulatory audits.
Preferred Certifications:
• ISO 27001 Lead Auditor, CISM, CISA, CEH, or equivalent.

Soft Skills:
• Exceptional clarity of thought, with the ability to articulate InfoSec concepts in a
simplified, stakeholder-friendly manner.
• Experimental mindset with a drive to innovate and iterate quickly.
• Excellent communication and collaboration skills across tech and non-tech teams.
• High ownership, resourcefulness, and a hands-on, delivery-first approach.
• Naturally curious and up to speed with the latest InfoSec & Cyber Security
developments.