Shield is a global startup, with offices in TLV, NYC, LDN, and LIS.
We’re rapidly growing and looking for another important piece of the puzzle.
Is it you?
In this role, you will be responsible for executing the information security, governance, risk, and compliance strategies as defined by the CISO. This role requires a strong focus on the day-to-day management of security practices, GRC activities, and the integration of security within the software development lifecycle, ensuring the organization’s policies, procedures, and systems are aligned with regulatory requirements and industry best practices.
We can’t promise it will be easy, but definitely exciting and most importantly – FUN.
This position is located in Israel, and you’ll be reporting directly to the CIO.
Let’s get down to business:
The opportunity
- Program Implementation: Execute the organization’s information security and GRC programs based on strategies and objectives set by the CIO and acting CISO. This includes implementing security policies, controls, and standards across the organization.
- GRC Activities Management: Facilitate GRC processes, including risk assessments, compliance audits, and policy management, ensuring alignment with external regulations and internal standards.
- Secure SDLC Oversight: Work closely with the R&D and software development teams to integrate security measures throughout the SDLC, from requirements analysis to deployment, based on predefined frameworks and best practices.
- Data Access and Policy Enforcement: Manage data access controls and policy enforcement mechanisms to safeguard sensitive information and ensure compliance with data protection regulations.
- Tool and Platform Management: Oversee the effective use of the GRC platform for risk management, compliance tracking, and policy documentation. Ensure tools and technologies used for security and compliance are optimized and up to date.
- Collaboration and Support: Collaborate with IT, R&D, legal, and other departments to support security and compliance projects. Provide expertise and guidance on implementing security and compliance requirements.
- Incident Response Support: Assist in managing and refining the incident response process and procedures, ensuring readiness to respond to security incidents effectively.
- Awareness and Training: Support the development and delivery of security awareness and training programs to promote a culture of security and compliance throughout the organization.
Experience and skills
- Solid experience in information security, GRC processes, and secure software development lifecycle management.
- Knowledgeable in security frameworks (e.g., ISO 27001, NIST) and compliance regulations (e.g., GDPR, SOC 2).
- Practical experience with security technologies, data protection strategies, and compliance audit facilitation.
- Strong organizational and project management skills to manage multiple tasks and projects effectively.
- Good communication skills, capable of working collaboratively with technical and non-technical teams.
This role is designed to be hands-on, focusing on the operational aspects of security and compliance within the organization. It is essential for supporting the strategic vision set by senior management, ensuring the effective and efficient implementation of security and compliance initiatives.
Oh hey, you made it all the way here!
So, in case you were wondering,
Shield is how compliance teams in financial services can finally read between the lines to see what their employee communications are really saying. We are a post-Series B startup with some of the largest financial organizations in the world as investors and customers.
Our platform analyzes digital interactions to fight financial crimes and mitigate a toxic workplace environment.
Shielders listen more intently. Pay closer attention to the details. Make the extra effort. Care. It’s what we do at Shield every day. And not just for our customers, but for everyone we work with. It’s all about creating a world where people understand and trust each other.
Shield is set to do good in the world, we help protect market integrity and people’s financial assets.
