M1 - IT Security Lead - Business Partner

<p><strong>Objective of the Role</strong><br>As the IT Security Business Partner Lead, you will be responsible for leading the IT security business partnership function within our fintech product development company. This senior role involves managing a team of IT security business partners, ensuring the protection of our infrastructure, cloud environments, development processes, and compliance with regulatory requirements. You will play a critical role in enhancing the security maturity of our products and services, fostering collaboration between IT and security teams, and driving strategic security initiatives.</p> <p><strong>Main Responsibilities</strong></p> <p><strong>Strategic Leadership &amp; Partnership</strong><br>● Act as the primary Information Security representative and strategic consultant, translating security&nbsp;requirements and risks for business, technology, and executive leadership (CTSO/CISO).<br>● Align the cybersecurity strategy with the company's strategic objectives, ensuring security is integrated&nbsp;into all new business ventures, product development, and technology projects.<br>● Lead and mentor the Cybersecurity Business Partner team, driving alignment, promoting diversity and&nbsp;inclusion, and continuously managing team performance against key strategic objectives.</p> <p><strong>Risk Management &amp; Compliance Oversight</strong><br>● Own the Business Security Risk Landscape: Perform periodic, holistic risk reviews, coordinate mitigationplans with technical teams, and ensure the appropriate level of security maturity across theorganization.<br>● Govern Policies and Audits: Oversee the dissemination of and compliance with Information SecurityPolicies, and lead efforts to meet both internal and external audit requirements and regulatorymandates.<br>● Develop Business Security Indicators: Design and implement key metrics (KPIs) to measure and reportthe effectiveness and maturity of the security posture to executive leadership monthly.Operational</p> <p><strong>Engagement &amp; Incident Response</strong><br>● Manage Cross-Functional Relationships: Serve as the central liaison and point of contact for key internaldepartments (e.g., CTSO for operational security, CISO for governance), facilitating seamless&nbsp;communication and collaboration.<br>● Drive Security Maturity: Ensure proactive vulnerability management and escalate critical threats thatjeopardize the Confidentiality, Integrity, and Availability (CIA) of the business to the Monitoring andResponse (SOC) team.<br>● Participate in Incident Response: Provide critical business context and coordination support duringsecurity incidents to ensure timely and effective containment and resolution.Culture, Innovation &amp; Empowerment<br>● Embed Security Culture: Participate in business committees and rituals to identify emerging securityneeds, providing training and guidance to stakeholders on best security practices.<br>● Promote Autonomy and Innovation: Actively foster an autonomous work culture within the team,driving innovation by exploring new security technologies, secure development practices, and industrybest practices.</p> <p><strong>Required Knowledge and Experience</strong><br>● Bachelor's degree in computer science, Information Technology, or a related field.<br>● Over 8+ years of experience in managing security controls across various layers: data, end-user devices,cloud, infrastructure, perimeter networks, and web and mobile applications.<br>● Deep knowledge of security technologies, cryptography, secure development, and application security.<br>● Familiarity with security audits, regulatory compliance, and security risks.<br>● Proven experience in project management, including planning, execution, and monitoring of securityinitiatives.<br>● Desirable security certifications: CISSP, CISA, CISM, and PCI.<br>● Intermediate English communication skills.</p><div class="content-conclusion"><p data-start="0" data-end="86">En Spin estamos comprometidos con construir un lugar de trabajo diverso e inclusivo.</p> <p data-start="88" data-end="330" data-is-last-node="" data-is-only-node="">Creemos en la igualdad de oportunidades y promovemos un entorno libre de discriminación por motivos de raza, origen nacional, género, identidad de género, orientación sexual, discapacidad, edad o cualquier otra condición legalmente protegida.</p></div>