Information Security Specialist
Operative
300+ media companies as clients, $40+ billion in revenue processed, 25,000+ worldwide users
Operative is a revenue accelerant for media companies around the world. No other software company in AdTech space, brings a comparable depth of experience to create truly innovative software that performs across all platforms, revenue models and business units. We are a SAAS (Software as a Service) platform which helps clients manage advertisements both in the linear (TV) and digital space. We have been in the market for over two decades and have 1100+ employees with 12 offices spread across the globe. Operative is proud to play a pivotal role in the way advertising is bought, sold and managed across media industry.
Role:
We are looking for a Senior Security (Governance, Risk and Compliance) Specialist with at least 3 years of experience in relevant security domains.
Key Responsibilities:
- Develop and mature policy and control framework supporting various standards, including ISO 27001:2013, SOC 2, GDPR, and relevant data protection laws
- Collaborate with different departments to implement the control framework for the above standards
- Develop automated security and compliance capabilities in support of existing organizational processes
- Lead Operatives customer-relevant processes including questionnaires, sales support, and security contract negotiations
- Work closely with the internal engineering and IT departments to implement technical and procedural controls
- Maintain and improve the Vendor risk management program
- Maintain and improve the Access management program
- Lead Security Awareness efforts including phishing simulations, training and communication
Qualifications:
- 3 years of experience in relevant security domains (compliance, security risk management, auditing, etc.)
- Solid understanding of security principles in cloud environments
- Understanding technical aspects of IT systems - operating systems, networking and cloud technologies
- Knowledge of ISO 27001:2022, NIST CSF and SOC 2 audit and reporting
- Experience in working with diverse set of stakeholders in an organization
- Relevant security certifications such as CRISC, CISA, CISM, or CISSP are an advantage
- Experience in developing security policies and procedures
Why join us ?
- Operative is a technology-oriented product organization that believes in empowering its people
- We use the latest tech stack and empower our engineers to learn, work and ideate on new technologies available in the market
- We provide flexi work schedules and remote working to encourage work life balance
- We are an equal opportunities employer and recruit based on the experience and skill set.
- We offer a competitive salary and benefits package
Please apply online and upload your CV.
“Operative is a merit-first, equal opportunity employer; diverse applications are encouraged.”
Operative cares about your privacy and protecting your data. By submitting an application for a position with Operative, you acknowledge that you have read the following and consent to how Operative treats your data: 1) the Candidate Privacy Policy available at https://www.operative.com/candidate-privacy-notice/ (or if you are a candidate from Israel the Candidate Privacy Notice (Israel), available at https://www.operative.com/candidate-privacy-notice-israel/, and 2) the Candidate Notice for Data Transfer and Retention available at https://www.operative.com/candidate-notice/.