Director of IS Governance (Cy-SA-G6)

Do you get all excited when you hear terms like vulnerability assessment,
penetration tests, security verification processes, or intrusion detection? If
so; you are in the right place. Our Cybersecurity Team spends every waking
(and sleeping) minute detecting security threats before they happen. Join the
band and help us build ultra-secure payments technology for our customers.
The Director of CyberSecurity Governance is responsible for establishing and
maintaining Tap's overall Cybersecurity risk management program, which is
designed to ensure that the company's technology systems and data are
adequately protected.

Key Responsibilities:
* Takes ownership of cybersecurity programs related to security policies, vendor risk and compliance management, regulatory audits and compliance management, metrics, risk and performance indicators, management reporting, security awareness and training
* Responsible for the development of security risk management using continuous self-assessments and executive reporting
* Ensures that robust information security programs and strategies are developed and maintained for compliance with the organisation's information security policies, applicable laws, regulatory requirements and best practices.
* Develops and maintains the information security strategy for the organisation and ensures alignment with the enterprise strategy and goals through robust risk management of IT business.
* Coordinates activities of the IT Security Steering committee and ensures that activities and decisions of the committee are documented, implemented and monitored for compliance.
* Monitor projects (change initiatives) to identify and fix security gaps as well as improve system availability and usability.
* Coordinate development, maintenance and monitoring of security policies and procedures across the organisation while ensuring that such policies conform to regulatory standards and other relevant information security frameworks such as NIST (National Institute of Standards and Technology), COBIT (Control Objectives for Information and Related Technologies), ISO/IEC 27K series.
* Any other duties as required by the line manager or Head of Department that are commensurate with the grade.

Background & Experience:
* Bachelor's or Master's degree in Engineering or Science
* Certification in CISSP and/or other technical certifications
* Track record of leading distributed teams and leading delivery of complex, multi-faceted technology assessment and compliance initiatives
* ‎12+ years experience in running a cybersecurity GRC role or a related function
* Experience managing large cybersecurity teams with a global presence
* Deep experience in understanding regulatory and industry standards such as PCI, SOX ‎404, GLBA ISO standards, FFIEC exams, NIST framework, SSAE, etc
* Hands on leadership experience in authoring security policies, developing standards, deploying GRC solutions to effectively manage and measure on the cyber risk posture
* Technically strong in understanding and solving complex cybersecurity challenges, having a track record of leading the delivery of complex, multi-faceted technology initiatives
* Excellent written and communication skills having worked with executive management
* Attested ability to establish and sustain effective, professional relationships with product and business managers; work closely with business partners to understand business drivers and market requirements; and provide leadership to the technology group in order to create the required protection for the solutions in the required time frames.
* High degree of technical complexity and conservancy; familiarity with complex global information security infrastructures preferred
* Experience with a wide array of security platforms, protocols, tools, and technologies.
* Knowledge of/experience with international compliance requirements/standards
* Fluency in spoken and written English is essential

Tap is a rapidly growing payment services business, expanding
internationally at an extraordinary pace. We are hiring exceptional talent to
work with high-performing global teams with one common goal: Making payments
easy, quick and secure for our clients all around the world.

Are you ready?