Consultant in IT Security advising on critical infrastructure with a focus on information security. Engage in remote and on - site consultations with clients to enhance their security processes.
About the role
- Chief Information Security Officer leading global information security strategy and protecting systems at Cloudinary. Overseeing security governance, compliance, and incident readiness while collaborating with various teams.
Responsibilities
- Develop and maintain the company’s information security strategy, policies, and long-term roadmap. Both for production environments and for internal business by overseeing security of enterprise systems.
- Lead security risk assessments, mitigation planning, and ongoing security monitoring.
- Lead incident response planning, preparedness, and execution.
- Manage security governance, including controls, documentation, and audit readiness.
- Ensure compliance with relevant standards and regulations such as SOC 2, ISO 27001, GDPR, and emerging AI frameworks.
- Direct security architecture reviews and support secure development practices across product and engineering teams.
- Ensure security is integrated into engineering culture and delivery without hindering velocity, while aligning platform security with engineering practices and production resiliency requirements.
- Oversee vendor security, penetration testing, and third-party risk management.
- Serve as the primary security contact for customers, partners, auditors, and regulators, and own the security aspects of the company’s products, in alignment with business and customers’ needs.
- Provide regular updates to executive leadership on security posture, risks, and priorities.
Requirements
- Extensive experience in information security leadership, including prior ownership of a security program at scale at SaaS companies.
- Strong understanding of security frameworks, cloud security, risk management, and secure software development.
- Expertise in security governance, threat modeling, and compliance frameworks (SOC 2, ISO 27001, GDPR, and emerging AI regulations).
- Proven ability to manage incidents, lead cross-functional teams, and implement organisation-wide security practices.
- Effective communicator with experience supporting enterprise customers and executive stakeholders.
- Proven ability to represent the company’s security posture to enterprise customers, partners, auditors, and regulators.
- Relevant certifications (CISSP, CISM, or equivalent) preferred.
- Experience as CISO in a publicly traded company or IPO planning is preferred.
Job title
Job type
Experience level
Salary
Not specified
Degree requirement
Tech skills
Location requirements
Senior Consultant Penetration Testing for a growing consulting firm. Involves tackling security challenges and improving client IT security.
Senior Consultant in Information Security at a leading consulting firm with 30 years of experience. Guide project teams in implementing security strategies remotely and on - site.
Werkstudent im Security Consulting für praktische Einblicke in IT - Management. Unterstützung bei Beratungsfeldern wie Informationssicherheit und Risikomanagement.
Consultant supporting IT security through project involvement and customer education in Germany. Providing expertise in information security management with a focus on individual solutions.
Senior Consultant in Security Consulting for a growing advisory firm with over 300 employees. Leading teams and implementing information security management strategies both remote and onsite.
IT Security Advisor ensuring security by design in IT, OT, and Cloud projects for Københavns Lufthavn. Involve in security workshops, threat modeling, and compliance requirements.
Residence Hall Security Coordinator ensuring safety and security in university residence halls. Monitoring security during nighttime hours and providing customer service to residents.
Information Security Risk Specialist assisting Air Force or Space Force organizations with cyber risk assessment. Guiding clients in developing mitigation plans to secure communications systems.
Senior Health, Safety and Environment Technician managing SSMA compliance in industrial projects. Leading a safety team and ensuring legal conformity in various industrial settings.