Head of Security & Compliance (Fintech)

Формат работы

remote (только Canada/Romania)

Тип работы

fulltime

Грейд

head

Английский

Страна

Romania/Canada

Вакансия из Hirify Global, списка международных tech-компаний
Для мэтча и отклика нужен Plus

Мэтч & Сопровод

Для мэтча с этой вакансией нужен Plus

Описание вакансии

Текст:

TL;DR

Head of Security & Compliance (Fintech): Owning security and compliance end-to-end for a global SaaS fare collection platform with an accent on PCI DSS, ISO27001, and SOC2 standards. Focus on strengthening security posture, managing audits, and embedding security practices within Engineering and Product teams.

Location: Remote (Canada - East Coast)

Company

hirify.global provides fare collection platforms that enable seamless public transport ticketing for millions of riders globally.

What you will do

Take full ownership of security and compliance across the organization, defining priorities and workflows.
Define security requirements and collaborate with Engineering and IT teams for effective implementation.
Maintain and lead compliance initiatives for PCI DSS, ISO27001, SOC2, and Cyber Essentials.
Manage the end-to-end audit process, from preparation to delivery and remediation.
Maintain a clear view of risk to help the business prioritize critical security matters.
Lead and support a small team, providing direction and accountability.

Requirements

Experience in security and compliance within payments, fintech, or PCI-regulated environments.
Hands-on experience delivering audits for PCI DSS, ISO27001, and SOC2.
Proven track record of personally owning and delivering compliance programs.
Experience working in a scaling company and the ability to bring structure to processes.
Strong communication skills for both technical and non-technical audiences.
Must be based in Canada (East Coast).

Nice to have

Experience with ISO 27017 and ISO 27018 standards.
Certifications such as CISSP, CISM, CISA, or ISO27001 Lead Auditor.
Awareness of AI-related security and governance considerations in a SaaS environment.

Culture & Benefits

Generous vacation policy: 20 days plus year-end shutdown (28+ days total).
Private Healthcare and Life Insurance.
Annual training allowance of up to CAD$1300 and home office stipend.
Flexibility to work from any country for up to 3 months per year.
Enhanced family leave and menopause support.

Будьте осторожны: если работодатель просит войти в их систему, используя iCloud/Google, прислать код/пароль, запустить код/ПО, не делайте этого - это мошенники. Обязательно жмите "Пожаловаться" или пишите в поддержку. Подробнее в гайде →