• Lead a team of risk, compliance, and privacy experts who partner with global technology teams and business leaders in the execution of Ryder’s Information Security Management System • Lead the development and ongoing management of common control and risk management frameworks for measuring the organizational security posture based on industry, regulatory, and customer needs • Serve as a trusted partner to educate and collaborate on information security and risk management best practices with stakeholders in Corporate Compliance, Enterprise Risk Management, Internal Audit, Physical Security and Safety, Legal, and IT • Lead the development and ongoing management of global information security policies and corporate standards throughout the organization that align with industry guidance and result in effective methods to reduce security risks • Lead the development and management of a global third-party risk management program to evaluate new and existing vendors on a regular basis based on their criticality to the business • Lead the development and management of a global information security customer compliance program which facilitates the processes for handling customer requests for information security attestations, audits, on-site reviews, and remediation of security findings • Lead the development and management of a modern, engaging, global information security training and awareness program to provide ongoing information security education to all levels of the organization • Lead the development and management of an IT enterprise risk register to properly catalog, manage, communicate, and assess global IT risks

• Support Principal and Senior Consultants in the delivery of cybersecurity and compliance engagements • Conduct gap analyses against frameworks and requirements such as NIST CSF 2.0, SOC 2, ISO 27001, PCI DSS, HIPAA, and CMMC - crosswalking when applicable • Assist in identifying, assessing, and documenting security and compliance risks • Contribute to the preparation of client-facing materials, helping communicate compliance requirements and risk findings to technical and non-technical stakeholders • Support the development of strategic, operational, and tactical recommendations to remediate identified risks and improve the client’s security posture and compliance position • Deliver tasks and projects on time and within budget while meeting critical success metrics to maintain high client satisfaction

• Lead and coordinate SOC analysts during assigned shift, ensuring adherence to procedures and performance expectations. • Serve as the first line of escalation for high-priority or complex security incidents. • Oversee real-time monitoring, analysis, and triage of security alerts from various security platforms. • Validate and ensure completeness, accuracy, and consistency of incident documentation and ticketing. • Enforce adherence to playbooks, runbooks, and service level agreements (SLAs). • Provide shift handoff summaries and briefings to incoming teams and SOC leadership. • Mentor and coach team members to drive continuous skill development and career progression. • Assist with onboarding of new analysts and ensure proper access to customer environments. • Participate in operational planning and post-incident reviews to identify improvements. • Collaborate across internal teams to support customer onboarding, tuning, and custom configurations. • Maintain awareness of emerging threats, vulnerabilities, and security technologies.

Role Description As a Product Security Engineer at FAIRTIQ, you will play a pivotal role in enhancing and evolving our cybersecurity program, with a particular emphasis on application security. Working as part of a small, dynamic team, you will: - Design, implement, and manage key security activities such as vulnerability assessments, security scanning, security observability, detection engineering, and technical security documentation. - Automate manual work and improve existing solutions. - Act as a trusted advisor, guiding and educating teams on security best practices. - Contribute to securing our FAIRTIQ platform, products, and solutions, collaborating with people from the Tech Team and beyond. - Foster a living security culture. A typical day starts with a team stand-up to discuss achievements, plans, and address challenges the team is facing. You will collaborate with your squad or work autonomously on security solutions that empower colleagues to create services that match our own and our users’ high security bar. You’ll also apply your technical and communication skills by advising and enabling peers across teams to make sure security is embedded from the start. Role responsibilities: - Implement new security solutions contributing to a secure SDLC. - Improve and optimise existing security solutions. - Advocate for technical security awareness across the Tech and Product organisation, setting the standard through your work and example. - Provide support and security guidance, contributing to secure software development. - Conduct technical design reviews and perform structured threat modelling to identify and mitigate potential risks. Qualifications - Bachelor’s or Master’s degree in Computer Science, Telecommunications, or a related technical field, or equivalent practical experience. - 3-4 years in a role with security exposure. - Strong grasp of web, mobile, and cloud security concepts, including security protocols, basic cryptography, and network security. - Familiarity with secure software development practices. - Proficient in Java, Python, or shell scripting. - Basic understanding of disciplines like vulnerability management, security observability, and security incident response. - Analytical mindset with strong problem-solving skills. - Eagerness to learn and stay updated with emerging technologies. - Strong communication, humility, and a collaborative spirit, with the ability to work effectively across teams. - Excellent proficiency in English (written and spoken). - Engagement in extracurricular activities like Capture The Flag (CTF) competitions, bug bounty programs, or other security challenges is a bonus. Benefits - A healthy culture based on respect, inclusion, diversity, and individual empowerment. - Dynamic and international work environment. - Chance to be part of a fast-growing, international tech company. - Competitive salary package. - Budget and support for self-improvement. - Creativity and innovation boosters with our “Tech Joker Days” (work on whatever you think may help FAIRTIQ). - Lots of leadership opportunities (tech, people). - Flexible working hours & fully remote work. Recruitment Process - Screening with Pedro (from the People Team): ~45 minutes. - Tech Screening: 60 minutes. - Problem solving with code: 60 minutes. - System design & Threat modeling: 60 minutes. Please apply in English exclusively.