Senior Information Security Officer

In July 2019, Fourth joined forces with HotSchedules to become the global leader in end-to-end restaurant and hospitality management technology solutions. Together, the merged company now represents the world’s largest and only provider of end-to-end restaurant and hospitality management solutions for customers across the globe and of all sizes, from a single location or franchisee restaurant to a global restaurant or hotel chain. The combined company’s complete software-as-service (SaaS) solution suite including scheduling, time & attendance, applicant tracking, training, inventory management / procurement, HR / benefits and payroll services now serves customers in 120,000 locations worldwide and is supported by a dedicated, unified team across offices in the US, UK, Bulgaria, China, Australia, and UAE.

Interested in joining our smart, fun, and talented team?

We are seeking a Senior Information Security Officer (SISO) to lead our global security programme. This is a hands-on leadership role responsible for building, scaling, and maturing a robust, audit-ready security function. You will define our 3-year strategy and oversee implementation across infrastructure, applications, risk, compliance, and operations, ensuring Fourth continues to meet the highest standards of trust, resilience, and regulatory excellence.

You will report directly to the CFO and partner with executive stakeholders, product, engineering, legal, IT, compliance, and customer teams. Your work will directly impact our ability to grow securely in complex, regulated environments such as SaaS, fintech, and global data services.

Security Strategy & Leadership
Define and execute a long-term security roadmap aligned with business goals. Advise executive leadership and the board on risk posture, threats, and programme maturity.

Risk, Compliance & Governance
Own security policies, risk registers, and internal controls. Ensure ongoing compliance with global standards (SOC 1/2, ISO 27001, GDPR, HIPAA, CCPA). Lead external audits and client assessments.

Cloud & Infrastructure Security
Oversee security across Azure-based SaaS environments. Ensure secure architecture, access control, and vendor security.

Application & DevSecOps
Embed security into CI/CD pipelines and development lifecycles. Promote secure coding, threat modelling, and secure-by-default practices.

Security Operations & Incident Response
Lead detection, response, and recovery activities. Manage vulnerability remediation, threat intelligence, and crisis response, including simulations and playbooks.

Customer Trust & Stakeholder Engagement
Represent the business in client security reviews, RFPs, and external audits. Align security with commercial objectives and customer expectations.

Team, Culture & Awareness
Build a strong security culture across the company. Lead awareness campaigns, mentor security team members, and manage external partners.

• 8+ years in information security with 3+ years in a senior leadership role.


• Proven success building and operating security programmes in Azure and SaaS businesses with agile environments.


• Hands-on familiarity with threat modelling, vulnerability management, and detection/response tools.


• Strong knowledge of ISO 27001, SOC 2, GDPR, HIPAA, CCPA, and related frameworks.


• Skilled in executive communication and cross-functional collaboration.

• Experience in regulated industries (fintech, healthcare, education, etc.).


• Familiarity with SSDLC, privacy frameworks, cryptography, and AI/ML security.


• Certifications: CISSP, CISM, CISA, CCSP, ISO 27001 Lead Implementer, or equivalent.


• Experience leading security culture change, board-level exercises, and external audits.

Holidays: We offer 25 basic holidays with the option to grow up to 30, plus time off for your birthday and bank holidays.

Flexible working: Use our flexible working hours and hybrid environments to manage it.

Wellness activities and gym subscription discounts.

Laptop and equipment.

Healthcare expense claim tools.

Opportunity to grow with certifications.

Annual meet ups.

Enhanced parenting scheme.

Cycle to work scheme and season ticket loan provided.

Pension and life insurance options to suit you.

On-demand pay tools to access salary before month-end.

All personal data provided by you in your application will be processed by Fourth LTD solely for our recruitment purposes. More information on Fourth LTD's privacy policy for job candidates is available here, and by applying you confirm that you have read it.

Fourth is an Equal Opportunity Employer

All qualified applicants will receive consideration without discrimination because of sex, gender identity, gender expression, sexual orientation, marital status, race, colour, age, national origin, military status, religion, disability, or any other legally protected status.