Biso
CurrentAchievements in role- Built a security team (6) covering varied disciplines- Prepared the organisation for SOC2, addressing control gaps in a number of departments and then executing audits- Delivered SOC2 Type II compliance in 2024- Measured the security programme performance (e.g. vulnerability management, control effectiveness)Responsibilities- Maintain compliance with ISO 27001, SOC 2 Type II, PCI, NIST CSF- Collaborate closely with privacy, compliance, fraud teams- Manage security risk including within a complex supply chain- Represent the company security to partners, answer security queries and assist in contract negotiations- Report security health metrics to op-co and group leadership- Foster a healthy security culture, maintaining key relationships and regularly messaging to the business- Manage security budgeting