Full-Time Information Security Lead

Policy Development and Governance: Develop, maintain, and enforce organizational security policies, standards, and procedures. Conduct regular reviews and updates to ensure compliance with frameworks like ISO27001, NIST, or SOC 2.

Security Operations and Incident Response: Lead the organization’s security monitoring efforts, identifying vulnerabilities and threats. Coordinate incident response efforts, ensuring swift and effective mitigation of security incidents.

Collaboration and Stakeholder Engagement: Partner with the IT Infrastructure team on the implementation and management of security tools (e.g., firewalls, endpoint protection). Work with the Tech Security team to review and improve security practices in software development and engineering. Liaise with external auditors and assessors for security compliance initiatives.

Awareness and Training: Develop and deliver security awareness programs, ensuring all employees understand their role in maintaining security. Stay updated on the latest security threats, trends, and solutions, sharing insights with internal teams.

Team Building and Leadership: Assist in recruiting and onboarding additional team members (e.g., Cyber-Security Engineer, Information Security Analyst). Mentor junior team members and promote a collaborative team environment.

Requirements: Bachelor’s degree in Cyber-Security, Information Technology, or a related field. Certifications such as CISSP, CISM, CEH, or ISO27001 Lead Implementer are highly desirable. 7+ years of experience in Cyber-Security roles, with expertise in security policies, incident response, and compliance frameworks. Proficiency with security tools (e.g., SIEM solutions, endpoint protection systems, and vulnerability scanners). Familiarity with Microsoft 365 security features (e.g., MS Defender, Entra) as well as CrowdStrike and network security concepts (e.g., VPN, firewalls). Strong leadership and stakeholder management skills. Excellent problem-solving and analytical abilities. Effective communication skills for both technical and non-technical audiences.

Company Culture: We offer the chance to be part of a fast-growing startup, one of the biggest players in the solar business. Help make the world a little better! We focus on green energy, work with the best in the industry, and foster personal growth. A hybrid work model.

Diversity and Inclusion: Enpal values diversity and strongly encourages applications from women, neurodivergent people, people of color, and LGBTQ(+) people. We are committed to a safe workplace and prohibit discrimination.

What is the last date for applying to the job?

Which countries are accepted for this remote job?