RemoteLeaf Logo
Log in Sign up

Head of Security & Privacy

1 month, 2 weeks ago
New Zealand
Full-time
Executive
Compliance Manager
Cybersecurity
AWS
Apply Now
Education Perfect

Education Perfect

Education Perfect provides a comprehensive learning, assessment, and analytics platform tailored for K-12 education, designed to enhance teaching effectiveness through personalized, curriculum-aligned online resources and innovative tools like an AI-po...

Diversified Consumer Services
251-1K
Founded 2007
View All Jobs 10

Description

  • Lead the company’s information security, privacy, and AI governance strategy.
  • Own and maintain the Information Security Management System (ISMS), security policies, and risk framework.
  • Maintain ISO 27001 certification and compliance with frameworks such as ST4S.
  • Ensure compliance with GDPR, the New Zealand Privacy Act, and the Australian Privacy Act as the data protection officer.
  • Oversee security architecture, tooling, vulnerability management, and incident response.
  • Manage the security and privacy risk register and report key risks to senior leadership and the board.
  • Develop and implement AI governance frameworks for responsible and ethical AI use.
  • Lead vendor security and privacy assessments, including third-party risk management.
  • Drive security awareness and training programs across the organisation.
  • Manage external security audits, certification processes, business continuity planning, and cyber insurance.

Requirements

  • Experience leading security and privacy strategy in a cloud-native or SaaS organisation.
  • Strong leadership skills with the ability to influence senior stakeholders and cross-functional teams.
  • Deep knowledge of ISO 27001 and related security frameworks.
  • Relevant certifications such as CISSP, CISM, AIGP, or AWS Certified Security - Specialty are highly regarded.
  • Strong understanding of cloud security architecture, particularly AWS, and modern application security practices.
  • Experience working with DevOps environments and secure software development practices.
  • Experience implementing security monitoring, alerting, and incident response processes.
  • Strong knowledge of privacy regulations including GDPR and the New Zealand and Australian Privacy Acts.
  • Experience with data governance, classification, retention policies, and lifecycle management.
  • Understanding of AI risks and governance frameworks, including bias, transparency, and responsible use.

Benefits

  • Employee Equity Bonus Plan with equity bonuses that foster ownership and shared growth.
  • Christmas shutdown leave with a full company shutdown during the week of Christmas and 3 extra days of paid leave.
  • One paid volunteer day per year.
  • Option to buy an extra week of annual leave.
  • Work from anywhere for up to 90 days per year from a different state or country.
  • Pre-tax $750 NZD end-of-year wellness bonus.
  • Fully funded Southern Cross Wellbeing 1 health insurance plan, with optional add-ons and family cover.
  • Remote/hybrid home set-up support and a $50 NZD monthly communication allowance.
  • Parental leave support, including full-pay top-up for primary caregivers, paid leave for secondary caregivers, and New Parents Leave.
  • 24/7 confidential Employee Assistance Program through Sonder, fully funded by EP.

Interested in this position?

Apply directly on the company website

Apply Now

Similar Roles

Your Business

Senior Microsoft 365 Engineer

Your Business Internet Software & Services

NRI North America is hiring a Senior Microsoft 365 Engineer to support managed services clients remotely by resolving escalations and optimizing Microsoft 365 environments, with a primary focus on M365 security.

Anywhere Full-time Senior Cloud Engineer Security Engineer
$75k-$95k
Active Directory PowerShell
32 minutes ago
Parachute Health

IT & Security Engineer (Contract)

Parachute Health 51-250 Health Care Providers & Services

Parachute Health is hiring a contractor for its IT & Security team to support secure, compliant, and efficient healthcare technology operations across identity, endpoint, network, and cloud security.

United States Contract Entry Level Security Engineer
AWS Bash CrowdStrike DHCP DNS GCP Git GitHub HIPAA Linux macOS OAuth PostgreSQL PowerShell Python SAML Splunk SQL TLS
57 minutes ago
Iovance Biotherapeutics

Senior Regulatory Affairs CMC Associate

Iovance Biotherapeutics 251-1K Pharmaceuticals

Iovance Biotherapeutics is seeking a Senior Regulatory Affairs Specialist to coordinate global CMC regulatory submissions and support life cycle management for clinical and commercial cell therapy products.

United States Full-time Senior Compliance Manager
$140k-$160k
58 minutes ago
MetroStar

Sr. Cybersecurity Engineer II (6625)

MetroStar 251-1K IT Services

MetroStar is hiring a Sr. Cybersecurity Engineer II to protect digital assets and strengthen cybersecurity infrastructure for a government-focused environment.

United States Full-time Senior Security Engineer
$175k-$202k
Cybersecurity DevSecOps Encryption Splunk
2 hours, 3 minutes ago

You're on a roll! Sign up now to keep applying.

Sign Up

Already have an account? Log in

Used by 14,729+ remote workers