Security Project Manager responsible for managing cyber - security project delivery and ensuring quality execution in Bulgaria. Requires excellent communication skills and fluency in English.
About the role
- Chief Information Security Officer responsible for leading information security strategy in a fintech company. Ensuring compliance and overseeing security risk management in a hybrid work environment.
Responsibilities
- Develop and execute the company’s information security strategy, aligning with business objectives and risk tolerance.
- Oversee the design and enforcement of security policies, protocols, and standards.
- Lead security risk assessments, vulnerability management, and incident response planning.
- Ensure compliance with industry regulations such as PCI DSS, PSD2, ISO 27001, GDPR, and other local/international standards.
- Collaborate closely with engineering, product, and legal teams to embed security in product and infrastructure development.
- Establish robust third-party risk management processes for vendors and partners.
- Monitor threat intelligence, identify emerging risks, and proactively adapt security posture.
- Build and mentor a high-performing security team, fostering a culture of security across the company.
- Report regularly to executive leadership and the board on security posture, incidents, and ongoing improvements.
Requirements
- Proven experience (7+ years) in information security leadership, with at least 3+ years in a fintech or payments company.
- Deep understanding of payment systems, digital wallets, card processing, and transaction security.
- Strong knowledge of security frameworks and compliance standards relevant to fintech.
- Experience with cloud security (e.g., AWS, GCP, Azure) and DevSecOps principles: experience in building secure SDLC and enable DevSecOps processes
- Experience in building RBAC in services and company-wide, implementation of SSO\IDP
- Hands-on expertise in managing security incidents, audits, and regulatory inquiries.
- Exceptional communication skills with the ability to influence stakeholders at all levels.
- Relevant certifications (CISSP, CISM, CISA, PCI ISA, etc.) are a strong plus.
- Bachelor’s or Master’s degree in Information Security, Computer Science, or related field.
- Hands-on experience with FortiGate (VPN, WAF, Network perimeter)
- Fluency in English and Russian languages (both spoken and written)
Benefits
- Opportunity to shape the security landscape of an innovative fintech company.
- Collaborative, mission-driven environment with a focus on impact.
- Competitive salary and benefits package.
- Flexible/remote work options.
- Continuous learning and development opportunities.
Job title
Job type
Experience level
Salary
Not specified
Degree requirement
Tech skills
Location requirements
Information Security professional managing governance, audit, and compliance in banking domain. Collaborating across teams to enhance security posture and control effectiveness.
IT Security Manager providing operational leadership for ICBC’s IT security program. Enhancing cyber security practices and managing security initiatives in a dynamic, hybrid cloud environment.
Security Officer ensuring safety and security of Yankee Candle assets and personnel. Responsiblities include monitoring, patrols, incident response, and safety training at the corporate campus.
Senior Specialist in Information Security Governance, Risk & Compliance at Cellulant, driving information security, privacy, and compliance standards within BFSI context.
Cloud Security & Application Security Engineer at Cellulant enhancing security across cloud - native platforms and applications. Working in a hybrid role to support a leading payment service provider in Africa.
IT Audit Consultant joining Baker Tilly to manage technology risks for clients, offering strategic advice and audit support. Engaging with client executives to ensure compliance and operational efficacy.
Senior Health and Safety Advisor overseeing health and safety on construction projects for Aecon. Ensuring compliance with SST legislation and promoting zero accident culture.
Senior Information Security Specialist executing Daikin Europe’s Information Security strategy. Collaborating with leadership to ensure our systems and services remain secure and compliant with regulations.
Experienced Information Security Officer at Daikin responsible for defining Information Security strategy and ensuring compliance with regulatory frameworks. Collaborating with external specialists and mentoring junior team members in EMEA.