Director of IT & Security

Summary

Join Masabi, a global leader in fare payment technology, as their Director of IT & Security. Lead the strategic IT and security function, ensuring the safety and scalability of Masabi's systems. Represent Masabi externally in security engagements and lead internal programs protecting the company, platform, and customers. Head a high-performing team, fostering a high-trust culture. This role offers opportunities for growth through internal collaboration and vendor partnerships. The position can be hybrid or fully remote, depending on location. If you are passionate about cybersecurity, cloud infrastructure, and enabling high-performing teams in a fast-growing SaaS company, this is the ideal opportunity.

Requirements

• Proven leadership in IT and security in a SaaS or tech-led business
• Strong knowledge of ISO27001, SOC 2, PCI DSS, and GDPR
• Skilled in incident response, risk management, and audit readiness
• Excellent communicator with customer-facing security experience
• Hands-on with IT systems (e.g. SSO, MDM, endpoint protection, Google Workspace, Salesforce, D365)
• Able to navigate complex technical and business trade-offs

Responsibilities

• Define and lead Masabi’s global security strategy across infrastructure, endpoint, SaaS, and application layers
• Manage audits and ensure compliance with ISO27001, SOC 2, GDPR, and PCI DSS frameworks
• Lead incident response, including drills and root cause analysis
• Own the security risk register and drive mitigation progress across teams
• Deliver business-wide security education and awareness
• Represent Masabi in customer security engagements, RFPs, due diligence, and assurance reviews
• Align internal posture with customer contract requirements
• Conduct periodic security reviews with key customers
• Own and manage end-to-end PCI compliance
• Lead corporate IT policies and processes (acceptable use, device management, SaaS access)
• Oversee the IT Helpdesk, device lifecycle, endpoint security, MDM, and SaaS governance
• Ensure business continuity and disaster recovery capabilities
• Manage procurement and vendor relationships for IT tooling
• Lead, mentor, and develop a small IT & Security team, fostering a high-trust, high-performance culture
• Partner with Engineering, Infrastructure, Legal, and Sales on secure systems and contracts
• Contribute to M&A diligence and post-integration efforts
• Provide strategic security reporting to executive leadership

Preferred Qualifications

• Experience in regulated/public sector environments
• Certifications: CISSP, CISM, CISA, ISO Lead Auditor
• History of scaling security maturity through growth or M&A

Benefits

• 15 days paid vacation for each year of service plus 18 public holidays
• Private Healthcare
• Monthly team bonding allowance
• Menopause support
• Choice of a workstation
• Ability to work for up to 3 months per year from any country in the world
• Fun and collaborative environment with a focus on making a difference in the world
• In addition to the above, as an employee, you will also have access to a training allowance of up to $750 USD and $250 USD to spend on your home office every year