Head Of Security And Compliance Buen Salario - [F-974]

Our client, a Technological Start Up, is searching for a full-time position of Head of Security and Compliance (HSC) for its global operations in Madrid. Reporting to the Chief Information Officer (CIO), the HSC will develop and execute a comprehensive information security strategy aligned with the company’s business objectives and regulatory requirements.

1. Strategic Leadership: Develop and execute a comprehensive information security strategy aligned with the company’s business objectives and regulatory requirements.
2. Risk Management: Collaborate with IT, Engineering and Product Teams to identify, assess, and prioritize security risks associated with Cloud native data and AI products. Develop and implement risk mitigation plans.
3. Policy Development: Establish and enforce security policies, standards, and procedures to ensure the confidentiality, integrity, and availability of company data and systems.
4. Incident Response: Lead the development and execution of incident response plans to effectively address security breaches and other incidents.
5. Compliance: Ensure compliance with relevant laws, regulations, and industry standards, including GDPR, NIST, DORA, AI-Act, NIS2, or ISO.
6. Security Awareness: Promote a culture of security awareness and best practices across the organization through training and communication initiatives.
7. Vendor Management: Oversee the security of third-party vendors and partners, ensuring they meet the company’s security standards.
8. Continuous Improvement: Stay current with emerging security trends, threats, and technologies, and continuously improve the company’s security posture.

1. Excellent verbal and written communication skills in both English and Spanish, with the ability to interact effectively with stakeholders at all levels.
2. Excellent ability to conceptualize long term business goals.
3. Ability to make informed and effective decisions.
4. Strong people management skills.
5. Familiar with start-up culture and ecosystem.

1. Bachelor’s in computer science, engineering, or relevant field.
2. 10+ years of experience in Security and Compliance.
3. Proven experience in leading and scaling teams.
4. Strong knowledge of security frameworks and standards (e.g., NIST, ISO).
5. Experience defining B2B digital channels and managing them.
6. Excellent problem-solving and analytical skills.
7. International work experience working with international teams.
8. Experience with Cloud data and AI products and the security challenges they present.
9. Outstanding communication and presentation skills.