Plus
Включить Plus
Назад
Company hidden
2 дня назад

Head of Security & Compliance (Fintech)

Формат работы
remote (только United_kingdom)/hybrid
Тип работы
fulltime
Грейд
head
Английский
b2
Страна
UK
Вакансия из списка Hirify.GlobalВакансия из Hirify Global, списка международных tech-компаний
Для мэтча и отклика нужен Plus

Мэтч & Сопровод

Для мэтча с этой вакансией нужен Plus

Описание вакансии

Текст:
/

TL;DR

Head of Security & Compliance (Fintech): Leading the security and compliance function for a global SaaS fare collection platform with an accent on regulatory standards, audit management, and risk mitigation. Focus on strengthening security posture, implementing PCI DSS, ISO27001, and SOC2 standards, and scaling security practices within a growth-stage company.

Location: Must be based in the UK (Remote or Hybrid in London)

Company

hirify.global provides fare collection platforms (Justride) for public transport globally, enabling seamless ticketing for millions of riders.

What you will do

  • Own end-to-end security and compliance, defining priorities and strategic direction.
  • Maintain and lead compliance for PCI DSS, ISO27001, SOC2, and Cyber Essentials.
  • Manage the full audit lifecycle from preparation to delivery and follow-up actions.
  • Collaborate with Engineering, Product, and Legal teams to implement security requirements.
  • Develop a scalable approach to customer assurance and risk prioritization.
  • Lead and mentor a small security team to create focus and accountability.

Requirements

  • Experience in security and compliance within payments, fintech, or PCI-regulated environments.
  • Hands-on expertise delivering PCI DSS, ISO27001, and SOC2 audits.
  • Proven track record of personally owning and delivering compliance programs.
  • Experience working in scaling companies and driving cross-functional initiatives without direct authority.
  • Ability to balance security risk with commercial and delivery needs.
  • Strong communication skills for both technical and non-technical stakeholders.

Nice to have

  • Knowledge of additional ISO standards such as ISO 27017 and ISO 27018.
  • Certifications such as CISSP, CISM, CISA, or ISO27001 Lead Auditor.
  • Awareness of AI-related security and governance in SaaS environments.

Culture & Benefits

  • 25 days holiday per year (option to buy 5 more) and enhanced family leave.
  • Private healthcare via AXA and life insurance.
  • Annual training allowance of £1000 and £200 for home office needs.
  • Flexible work options, including the ability to work from any country for up to 3 months per year.
  • Pension scheme and cycle to work scheme.
  • Collaborative environment with regular social gatherings.

Будьте осторожны: если работодатель просит войти в их систему, используя iCloud/Google, прислать код/пароль, запустить код/ПО, не делайте этого - это мошенники. Обязательно жмите "Пожаловаться" или пишите в поддержку. Подробнее в гайде →