Leave us your email address and we'll send you all the new jobs according to your preferences.

Head of IT, Security & Compliance

Posted 13 hours 53 minutes ago by Jobtailor

Permanent
Full Time
Other
Dublin, Ireland
Job Description
Responsibilities
  • Lead and deliver CameraMatic's SOC 2 certification programme
  • Build and maintain a robust information security management framework, including policies, risk registers, and controls aligned to SOC 2 Trust Service Criteria
  • Manage vulnerability assessments, penetration testing programmes, and remediation tracking
  • Define and enforce security policies, standards, and procedures across the organisation
  • Act as the primary point of contact for customer security questionnaires, audits, and due diligence processes
  • Drive a security first culture through training, awareness programmes, and clear internal communication
  • Serve as the company's primary point of accountability for data protection obligations under GDPR and relevant UK/EU regulations
  • Maintain records of processing activities, data retention policies, and data subject request processes
  • Partner with the Data Protection Officer (where applicable) and legal counsel to manage privacy risk
  • Conduct DPIAs for new products, features, and third party integrations
  • Manage relationships with data processors, ensuring appropriate contractual and technical safeguards are in place
  • Own the corporate IT environment including Microsoft 365, SaaS applications, endpoint management, and networking
  • Manage device procurement, MDM, access control, and identity management (SSO, MFA, PAM)
  • Define and maintain the IT asset register, software licensing, and vendor contracts
  • Ensure business continuity and disaster recovery plans are documented and tested
  • Support onboarding and offboarding processes with robust access provisioning and deprovisioning workflows
Requirements
  • 5+ years of experience in IT, information security, or a combined role, ideally within a SaaS or technology company
  • Proven experience leading or delivering a SOC 2 Type I or Type II certification
  • Working knowledge of GDPR and practical experience implementing data privacy controls
  • Hands on experience with cloud based corporate infrastructure (Microsoft 365, MDM, SSO)
  • Strong understanding of network security, endpoint security, and access management principles
  • Excellent communicator - able to translate technical risk into business language for senior stakeholders and customers
  • Highly organised with a strong track record of owning compliance programmes end to end
Certifications & Qualifications
  • SOC 2 Type I certification
  • SOC 2 Type II certification
Email this Job