Job Closed
This listing is no longer active.
Swap Commerce is a fast-growing technology company redefining global commerce with its unified platform that enables businesses to “sell anything, anywhere.��
Chief Information Security Officer
Location
Israel
Posted
81 days ago
Salary
0
Seniority
Lead
Job Description
Chief Information Security Officer
Swap Commerce
• Define and execute the global information security strategy aligned to business growth • Serve as the executive owner of security risk management across all regions • Report regularly to the executive team and board on security posture, risk, and compliance • Own the end-to-end delivery and ongoing maintenance of ISO certification • Lead all ISO audits, acting as primary interface with external auditors • Manage ongoing surveillance audits and recertification cycles • Build and maintain a scalable Information Security Management System (ISMS) • Ensure audit readiness is continuous, not event-driven • Drive remediation of audit findings and ensure closure of non-conformities within deadlines • Ensure alignment with global compliance frameworks including: SOC 2, GDPR, NIST Cybersecurity Framework • Lead internal audits and risk assessments across engineering, infrastructure, and corporate systems • Partner with Legal, HR, and Engineering to embed security controls across all functions • Oversee incident response planning and execution across global teams • Define and enforce security policies, standards, and controls • Ensure effective vulnerability management, penetration testing, and threat monitoring • Partner with Engineering to embed security into architecture and SDLC • Work closely with Product and GTM teams to meet enterprise customer security requirements • Support sales and procurement processes for security reviews and questionnaires
Job Requirements
- Proven track record as a CISO, Head of Security, or equivalent senior security leadership role in a high-growth technology company
- Extensive hands-on experience leading ISO/IEC 27001 certification programmes from gap assessment through to audit success
- Deep experience managing external ISO auditors, including successful Stage 1, Stage 2, and surveillance audits
- Strong understanding of ISMS design, governance, and operationalisation
- Experience scaling security and compliance across multi-region environments (UK, EU, North America)
- Familiarity with SOC 2, GDPR, and other enterprise security frameworks
Benefits
- Flexible work arrangements
- Professional development
Related Guides
Related Categories
Related Job Pages
More Security Engineer Jobs
Senior Systems Administrator & Cyber Security Specialist
Modern Family LawModern Family Law: Compassionate, Innovative Legal Solutions in Colorado, California, Georgia, Texas and Washington.
Role Description Modern Family Law, a boutique law firm specializing in Family Law, is looking for a compassionate, innovative, and respected Senior Systems Administrator & Cyber Security Specialist to work remotely near one of our locations. This role is critical to maintaining the confidentiality, integrity, and availability of sensitive legal and client data while supporting a modern, cloud-first technology stack. The ideal candidate is a hands-on technical leader with deep expertise in Microsoft Azure architecture, cybersecurity best practices, and macOS enterprise management, combined with a strong understanding of compliance and risk management in a professional services or legal environment. This role is fully remote and requires the ability to work independently, proactively, and with a high degree of ownership. Key Responsibilities - Systems Administration & Infrastructure - Design, implement, and maintain secure, scalable cloud infrastructure with an emphasis on Microsoft Azure architecture and integration with Microsoft 365. - Administer and optimize Microsoft Office 365, including Azure AD (Entra ID), identity management, conditional access, MFA, and security policies. - Manage and support a 100% macOS endpoint fleet using Jamf Pro and Apple best practices. - Oversee user provisioning, device lifecycle management, patching, and endpoint compliance. - Cyber Security & Risk Management - Lead the firm’s cybersecurity strategy, ensuring protection of confidential legal and client data. - Administer and monitor Bitdefender for endpoint protection, threat detection, and incident response. - Implement and enforce security controls aligned with CompTIA Security+ domains, NIST principles, and legal industry best practices. - Conduct regular security audits, vulnerability assessments, and risk assessments. - Develop and maintain incident response plans, business continuity plans, and disaster recovery procedures. - Cloud Applications & SaaS Administration - Administer and support key SaaS platforms: - NetDocuments (document management and security configurations) - Zoom (secure collaboration and meeting governance) - Adobe (licensing and security management) - Salesforce (user access, security controls, and integrations) - ChatGPT / AI tools with a focus on secure and ethical usage within a legal environment - Ensure secure integration and access control across all platforms. - Identity, Compliance & Governance - Architect and manage Azure-based identity and access management solutions. - Enforce least-privilege access models and Zero Trust principles. - Ensure compliance with legal industry standards related to data privacy, attorney-client confidentiality, and regulatory requirements. - Produce documentation, policies, and procedures related to security, IT operations, and compliance. - Leadership & Collaboration - Act as a senior technical advisor to firm leadership on technology and security strategy. - Provide escalation support and mentorship for IT operations as needed. - Communicate complex technical concepts clearly to non-technical stakeholders. - Collaborate closely with attorneys and staff in a remote-first environment. Experience - 10+ years of progressive experience in systems administration, cybersecurity, or IT infrastructure roles. - Demonstrated experience as an Azure Architect, including: - Azure AD / Entra ID - Microsoft 365 security & compliance - Cloud identity, networking, and security design - Extensive experience managing macOS environments at scale. - Proven experience supporting remote-first organizations, ideally in a law firm, legal services, or other high-confidentiality industry. - Hands-on experience with: - Jamf (MDM) - Bitdefender or comparable endpoint security platforms - NetDocuments or similar legal DMS platforms Certifications - CompTIA Security+ (Required) - Microsoft Azure certifications (strongly preferred), such as: - Azure Solutions Architect Expert - Azure Security Engineer Associate - Apple certifications (preferred): - Apple Device Support or Deployment certifications - Additional cybersecurity certifications (CISSP, CISM, etc.) are a plus. Education - Bachelor’s degree in Information Technology, Computer Science, Cybersecurity, Information Systems, or a related field is preferred but not required. - Significant, directly relevant professional experience combined with industry-recognized certifications is considered equally qualifying. - A Master’s degree is a plus but not a determining factor for this role. Skills and Competencies - Systems thinking with the ability to understand and optimize complex workflows. - Strong process design and optimization capabilities. - Ability to structure and interpret data to drive decision-making and performance improvements. - Ability to communicate professionally and interact effectively with all levels of personnel, including management staff and support staff. - Ability to be a proactive self-starter who understands the details within a much larger context. - Demonstrated attention to detail, reliability, and ability to quickly learn new technology. - Excellent organizational and prioritization skills, with the ability to manage multiple initiatives simultaneously. - Flexibility and ability to respond quickly and positively to shifting demands. - Ability to work under pressure and meet deadlines in a fast-paced environment. Physical & Communication Requirements - Ability to communicate verbally and in writing using a telephone, text messaging, or email. - Ability to sit for extended periods of time at a desk while typing, using a mouse, and looking at a computer screen. - Ability to stand, sit, bend, and lift items up to 10 lbs as needed. Equal Emphasis Statement We recognize that technical excellence comes from a variety of paths. Candidates with extensive real-world experience, strong certifications, and a proven track record of securing and operating complex environments are encouraged to apply, regardless of formal education. Mandatory Notices for Applicants - ADA Compliance: Candidates must be able to perform the role with or without reasonable accommodation. Requests for accommodation should be made to the Director of People & Culture in advance. - Compensation and Benefits: $120,000 - $135,000. This range is a reasonably reliable estimate of the base salary that this individual is expected to receive. Actual pay will be adjusted based on experience, location, and other job-related factors permitted by law. - Comprehensive benefits package includes health insurance, HSA/FSA options, short-term and long-term disability, dental and vision care, life insurance, 401(k), vacation, sick time, and access to an employee assistance program. Additional voluntary benefits include accident insurance, life insurance, disability insurance, critical illness insurance, long-term care insurance, and pet insurance. Commuter and transit benefits may be available in some locations. - Modern Family Law will consider all qualified applicants with arrest or conviction records. Modern Family Law is committed to diversity and inclusion in the workplace and has zero tolerance for harassment of any kind. Individuals seeking employment at MFL are considered without regard to their race, color, religion, sex, sexual orientation, gender identity, transgender experience, national origin, age, marital status, ancestry, disability, military status (including discharge status), genetic information, or any other protected class status as set forth by local, state, and federal law. Benefits - Health Care Plan (Medical, Dental & Vision) - Retirement Plan (401k, IRA) - Life Insurance (Basic, Voluntary & AD&D) - Paid Time Off (Vacation, Sick & Public Holidays) - Short Term & Long Term Disability - Training & Development - Work From Anywhere -- eligible after 6 months
Senior Systems Administrator, Cyber Security Specialist
Modern Family LawModern Family Law: Compassionate, Innovative Legal Solutions in Colorado, California, Georgia, Texas and Washington.
• Design, implement, and maintain secure, scalable cloud infrastructure with an emphasis on Microsoft Azure architecture and integration with Microsoft 365. • Administer and optimize Microsoft Office 365, including Azure AD (Entra ID), identity management, conditional access, MFA, and security policies. • Manage and support a 100% macOS endpoint fleet using Jamf Pro and Apple best practices. • Oversee user provisioning, device lifecycle management, patching, and endpoint compliance. • Lead the firm’s cybersecurity strategy, ensuring protection of confidential legal and client data. • Administer and monitor Bitdefender for endpoint protection, threat detection, and incident response. • Implement and enforce security controls aligned with CompTIA Security+ domains, NIST principles, and legal industry best practices. • Conduct regular security audits, vulnerability assessments, and risk assessments. • Develop and maintain incident response plans, business continuity plans, and disaster recovery procedures. • Administer and support key SaaS platforms: NetDocuments (document management and security configurations), Zoom (secure collaboration and meeting governance), Adobe (licensing and security management), Salesforce (user access, security controls, and integrations), ChatGPT / AI tools with a focus on secure and ethical usage within a legal environment. • Architect and manage Azure-based identity and access management solutions. • Enforce least‑privilege access models and Zero Trust principles. • Ensure compliance with legal industry standards related to data privacy, attorney‑client confidentiality, and regulatory requirements. • Produce documentation, policies, and procedures related to security, IT operations, and compliance. • Act as a senior technical advisor to firm leadership on technology and security strategy. • Provide escalation support and mentorship for IT operations as needed. • Communicate complex technical concepts clearly to non‑technical stakeholders. • Collaborate closely with attorneys and staff in a remote‑first environment.
• Serve as a key technical expert within the Security Operations Center (SOC) • Lead the design, implementation, and optimization of security monitoring and incident response technologies • Work closely with SOC analysts and other security professionals to enhance the organization’s ability to detect, respond to, and mitigate security threats • Responsible for threat detection and analysis, automation of security processes, and maintaining a strong security posture through continuous improvement of the SOC infrastructure • Mentor junior SOC analysts and engineers, providing technical guidance and fostering a culture of continuous improvement • Serve as the SOC’s subject matter expert for emerging threats, advanced persistent threats (APTs), and cutting-edge security technologies.
Role Description We are seeking a visionary Head of IT Enterprise Security to lead the security strategy for our new, high-growth battery energy storage business. As a key member of the team, you will be the primary architect of a "secure-by-design" philosophy. This is a unique opportunity to build a world-class security program from the ground up, securing the very technology that will power the future. Key Responsibilities - Strategic Leadership & Vision - Security Strategy & Leadership: - Build and lead a comprehensive security program from the ground up, covering Product, Manufacturing (OT), and Corporate (IT) security. - Product Security (Secure-by-Design): - Partner with Engineering to integrate security into the product lifecycle, focusing on Battery Management Systems (BMS), firmware integrity, and hardware-level protections. - IP & Trade Secret Protection: - Implement rigorous data loss prevention (DLP) and access controls to safeguard proprietary battery chemistry, R&D data, and manufacturing processes. - Manufacturing (OT) Security: - Secure our automated production lines and factory floor environments to ensure operational uptime and prevent industrial sabotage. - Supply Chain Integrity: - Establish a robust vendor risk program and Software Bill of Materials (SBOM) to ensure the integrity of global components and sub-systems. - Compliance & Standards: - Drive the business toward achieving critical product and industrial certifications (e.g., IEC 62443, ISO 27001, UL 2900). Qualifications - 12+ years in cybersecurity or risk management, with at least 5 years in a senior leadership role within a hardware manufacturing or high-tech environment. - Bachelor’s or Master’s degree in Computer Science, Engineering, or a related technical field. - Proven track record of securing embedded systems, firmware, or IoT devices at scale. - Direct experience securing Operational Technology (OT) and Industrial Control Systems (ICS). - Demonstrated ability to build security functions from scratch in a fast-paced, "startup-style" business unit. - CISSP is required; CSSLP (Secure Software) or GICSP (Industrial Security) is highly preferred. Requirements - Experience in the Renewable Energy, Automotive (EV), or Semiconductor industries. - Strong ability to communicate complex technical risks to executive leadership and board members. - Familiarity with export control regulations and international intellectual property protection. - Visionary strategic thinker able to navigate rapidly evolving global energy storage markets. Benefits - Immediate medical, dental, vision and prescription drug coverage. - Flexible family care days, paid parental leave, new parent ramp-up programs, subsidized back-up child care and more. - Family building benefits including adoption and surrogacy expense reimbursement, fertility treatments, and more. - Vehicle discount program for employees and family members and management leases. - Tuition assistance. - Established and active employee resource groups. - Paid time off for individual and team community service. - A generous schedule of paid holidays, including the week between Christmas and New Year’s Day. - Paid time off and the option to purchase additional vacation time.


