Overview
Chief Information Security Officer Jobs in England, United Kingdom at SearchWorks
Title: Chief Information Security Officer
Company: SearchWorks
Location: England, United Kingdom
Job Title: Chief Information Security Officer (CISO)
A rapidly expanding global payment processing and software provider is seeking a dynamic and experienced Chief Information Security Officer (CISO) to lead their security strategy. This organization offers a comprehensive suite of solutions, including e-commerce platforms, subscription billing, payment gateways, and merchant accounts, serving businesses of all sizes worldwide. As they continue their global expansion, they require a seasoned CISO to ensure the highest standards of security and compliance.
Key Responsibilities:
Global Compliance: Drive and maintain compliance with PCI DSS, ISO 27001, and other relevant security frameworks across diverse geographic regions.
Regulatory Liaison: Act as the primary point of contact for regulators, auditors, and payment networks (e.g., Visa, Mastercard) regarding security and compliance matters.
Security Governance & Strategy: Develop and implement robust security policies, controls, and risk management strategies across all payment processing layers (acquiring, gateway, processing).
Security Operations & Incident Response: Oversee real-time fraud monitoring, threat detection, and security operations, utilizing tools such as SIEM and IDS/IPS.
POS & PIN Security: Ensure the security of point-of-sale (POS) transactions, including PIN encryption, Hardware Security Module (HSM) management (e.g. Thales), secure key injection, and terminal-level security.
International Security Management: Adapt and implement security programs to meet the unique legal and regulatory requirements of various regions, particularly in Asia and Europe.
Requirements:
Minimum of 10 years of progressive experience in cybersecurity, with a strong emphasis on leadership within the fintech, payments, or banking sectors.
Extensive and demonstrable expertise in PCI DSS, PCI PIN, ISO 27001, and other relevant regional regulatory standards.
Proven experience in HSM management, PIN encryption, and securing POS transactions.
Strong understanding of cloud security, application security, and Security Operations (SecOps).
Exceptional ability to communicate and advocate for security at the executive and regulatory levels.
