Manager of Security and Compliance

As the Manager of Security and Compliance you will play a pivotal role in helping to drive the organizations comprehensive long-term strategy for Security and Risk & Compliance functions in alignment with business objectives.  The core goal of this position is to safeguard the company against internal and external threats and ensuring a constant state of audit readiness. This position requires an individual who possesses thought leadership in their areas of expertise the ability to communicate the vision and hands-on involvement with a start-up mentality.  You will manage a global team responsible for the day-to-day management of the organizations security programs and applicable compliance frameworks.

• Lead mentor and manage team of  direct reports responsible for cloud security and risk and compliance analysis.

• Develop and maintain policies standards processes and tools that ensure cyber readiness regulatory compliance and operational excellence in alignment with business goals.

• Act as the companys subject matter expert on industry regulations and provide compliance guidance to Ollion and our Clients. Youll also design and embed compliance processes into Client assessments ensuring theyre executed effectively whether handled in-house or through trusted partners.

• Uphold Internal Security Standards: Oversee Ollions ITs infrastructure ensuring systems are secure monitored and maintained according to best practices.

• Mature the companys security program through proactive exercises including annual penetration testing disaster recovery simulations and CSPM.

• Oversee the development implementation and enforcement of security policies and procedures championing a Zero Trust architecture based on the principle of least privilege and Role-Based Access Control (RBAC).

• Lead the incident response process determining severity assigning resources and ensuring swift containment of Security and compliance threats.

• Hands-on experience with security tools such as SIEM DLP endpoint detection and response (EDR) and vulnerability scanning.

• Proficiency with endpoint management solutions (e.g. Intune MDM ManageEngine RMM) and ticketing systems (e.g. Freshservice).

• Manage and optimize security tools including SIEM (Microsoft Sentinel) the Microsoft Defender suite and secret scanning solutions for development environments.

• Lead and manage all compliance programs and audits

• Act as the primary liaison with external partners including auditors and virtual CISO (vCISO) providers.

• Evaluate emerging technologies and lead strategic digital initiatives to enhance operational efficiency and business agility.

• Manage relationships with external vendors and technology partners; negotiate contracts and ensure service levels are met.

• Undertake any other duties of a similar level and responsibility as may be required from time to time.

Qualifications :

Expertise you Bring:

• 5 years of experience in a Security or Compliance role with at least 2 years in a leadership position managing a technical team. 

• Understanding and experience in Cloud Technologies. Should possess general familiarity across all three major CSPs (GCP AWS and Azure).

• Proven track record of successfully leading and passing audits for major compliance frameworks (e.g. SOC 2 ISO 27001 ISO 42001 and ISO 27090)

• Strong and practical knowledge of industry adopted frameworks and methodologies (MITRE ATT&CK CIS NIST ISO etc.)

• Experience in systems such as Microsoft Sentinel Microsoft Defender Endpoint and Cloud Apps Microsoft Entra and Google Administration.

• Strong knowledge of networking identity access policies and security best practices for cloud-based environments.

• Communication skills: Excellent verbal and written communication skills to effectively interact with customers internal teams and stakeholders.

• Problem-solving skills: Strong analytical and problem-solving abilities to identify and resolve issues and challenges efficiently and timely.

• Time management: Effective time management skills to lead complex cross-functional technology projects and various other tasks simultaneously.

• Proactive approach: Being proactive in identifying potential issues opportunities for improvement and going the extra mile to ensure Ollions success.

• Team player: Collaborating effectively with other teams within the organization such as sales marketing customer support and product development.

• Adaptability: Being adaptable to evolving business needs unplanned security challenges and embody a collaborative all hands on-deck mentality when necessary.

• Exceptional written and verbal communication skills with the ability to explain complex technical concepts to non-technical stakeholders

• Demonstrated experience in developing and managing departmental budgets and negotiating with vendors.

• Security certification(s) CCSP CISSP CISM  CompTIA Security CompTIA PenTest GIAC Information Security Fundamentals (GISF) GIAC Security Essentials (GSEC) (ISC) Associate (ISC) Systems Security Certified Practitioner (SSCP) ISACA Cybersecurity Fundamentals Certificate (Security ISC2 ISACA CompTIA) Risk Management  (CRISC) 

• B.S. in  Computer Science Information Technology Information Systems or IT Management.

• Ability to work in a fast paced team environment

Additional Information :

BENEFITS & PERKS FOR WORKING AT OLLION

Our employees multiply their potential because they have opportunities to: Create a lasting Impact Learn and Grow professionally & personally Experience great Culture and Be your Whole Self!

Beyond an amazing collaborative work environment great people and inspiring innovative work we have some great benefits and perks:

• Benchmarked competitive in-market total rewards package including (but not limited to): base salary & short-term incentive for all employees
• Virtual by default small but Global organization; learn wherever whenever frees our people from a rigid view of learning and growth
• Retirement planning (i.e. CPF EPF company-matched 401(k))
• Globally we build benefit plans that offer choices for whatever stage in life our employees are in and allow for flexibility as life happens.  Employees have access to a fully comprehensive benefits package to choose the medical dental and vision insurance plan that best fits their addition to great healthcare coverage we also offer all employees mental health resources and additional wellness programs.
• Generous time off and leave allowances
• And more!

DIVERSITY AT OLLION 

One of our cultural keystones Find the angle recognizes that every individual has different aspirations needs and brings a unique perspective. 

We value diversity inclusion and equity (DE&I) as core to our success. We believe that a diverse workforce brings together unique perspectives experiences and ideas leading to innovation creativity and better outcomes for our clients and our organization. We are on a journey and are committed to building a workplace that celebrates and respects individuals from all backgrounds including but not limited to race ethnicity gender sexual orientation age disability and cultural heritage.  

As our commitment to diversity and inclusion is reflected in our: 

• Awareness and sensitisation programs: to create awareness and sensitisation. We encourage open dialogue active listening and mutual respect creating a safe and supportive environment for everyone to contribute their unique perspectives and ideas. 

• Dedicated efforts to building diverse teams: that leverage the strength of our differences to tackle complex challenges and drive innovation. By embracing diversity we broaden our collective knowledge enhance problem-solving capabilities and unlock limitless potential for our employees.

All your information will be kept confidential by the Company. Ollion is an equal opportunity employer. We celebrate diversity and we are committed to creating an inclusive environment for all employees. Ollion does not discriminate in employment on the basis of race color religion sex national origin political affiliation sexual orientation marital status specially abled genetic information age membership in an employee organization parental status military service or other non-merit factor.

Ollion is an equal opportunity employer. We celebrate diversity and we are committed to creating an inclusive environment for all employees. Ollion does not discriminate in employment on the basis of race color religion sex (including pregnancy and gender identity) national origin political affiliation sexual orientation marital status disability genetic information age membership in an employee organization parental status military service or other non-merit factor.

Remote Work :

Yes

Employment Type :

Full-time