Chief Security Officer - Madrid, España - Sdi Digital Group

    Sdi Digital Group
    Sdi Digital Group Madrid, España

    hace 2 semanas

    SDi Digital Group background
    Descripción
    Company Description Nexthink is the global leader in digital employee experience management. Our products allow enterprises to create highly productive digital workplaces for their employees by delivering optimal end-user experiences.

    Through a unique combination of real-time analytics, automation and employee feedback, Nexthink gives IT teams the insight they need to empower and even delight people at work.

    Headquartered in Switzerland with US headquarters in Boston, Nexthink also has offices in France, UK, Germany, Spain and UAE.

    Our growing team of Nexthinkers is proud to make the digital work lives of over sixteen million employees across 1,000 customers more productive.

    Job Description Nexthink is looking for a Chief Security Officer who is an expert in working with development teams to build secure SaaS products and is enthusiastic about securing an enterprise's information and data.

    The candidate will guide and grow a global team of about ten security and compliance experts, owning all aspects of the security function.

    A successful candidate will have well-developed technical fundamentals in cloud security and be involved in securing software development and deployment processes.

    Reporting to the CTO and working closely with Architecture, Development, SRE, Legal, Support, Product Management, and Sales management in guiding the security function for Nexthink.

    Hybrid role to be based in Boston, Lausanne or Madrid, relocation package available

    Collaborate closely with Product, IT, Legal, and other departments to align security initiatives with company objectivesAct as a main point of contact for security matters with external vendors and partnersDrive Nexthink's security vision, continually update strategy to meet this vision, and maintain a multi-year security roadmapMaintain consistent dialogue and advocate for security best practices while reporting performance efficiency to executive stakeholdersDirect the implementation of next-gen security solutions and ensure compliance with changing laws and regulationsOversee the development of information security policies, standards, and procedures that are aligned with industry best practicesEvaluate and adapt security measures to mitigate emerging threats and vulnerabilities, with a focus on protecting software integrity and data security for customersGuide and mentor a high-performing team, handling performance management, workload balancing, and succession planningProvide hands-on technical management in the design, implementation, and application of security measuresConduct regular audits and assessments to identify areas for improvementFacilitate interdepartmental training and development programs focused on security best practicesBuild and maintain relationships with government agencies and other stakeholders in the security compliance landscape, ensuring compliance with Federal, FedRAMP, and DoD regulationsDevelop and execute cloud security policies, including incident response protocolsManage operational and capital budgets for the cyber security department.

    Host security briefings for executive stakeholdersDraft comprehensive yet accessible reports for both technical and non-technical audiencesQuick adaptability to a fast-paced security landscape, staying abreast of new technologies and best practicesQualifications Advanced degree in technology-related fields like CS or Engineering preferred10+ years of progressive management experience within security in a SaaS environmentProficient technical background in designing, implementing, and managing security solutionsDecisive and informed decision-making, coupled with visionary problem-solving abilitiesExemplary people management skills, including performance monitoring, inspiration, and fostering a positive work environmentProven ability to comprehend and comply with security regulations and work with key stakeholders to ensure complianceExhibited ability to secure cloud-based systems and applications, responding to security incidents in the cloudAbility to convey security-related concepts to diverse audiences, technical, legal and executive, orally and in writing in an easily understood and actionable mannerExpert knowledge in compliance frameworks : ISO 27001, NIST, CSF, Fedramp, GDPR, and privacy-related laws preferredFormal certifications such as CompTIA Security+, CISSP, CISM, CISA, and / or CEH are preferredKnowledge of Agile software engineering best practicesMust have fluency in EnglishLI-Hybrid
    Additional Information At Nexthink, we believe actions are stronger than words regarding diversity, inclusivity, and equity in the workplace. Nexthinkers are multinational and multilingual and come from all walks of life.

    We are committed to hiring a genuinely representative workforce that can create solutions and foster innovation for the modern digital employee experience.

    Join us today

    #J-18808-Ljbffr