Innovid is hiring a

Director of Information Security, TLV

Tel Aviv-Yafo, Israel
Innovid (NYSE:CTV) powers advertising delivery, personalization, measurement and outcomes across linear, CTV and digital for the world’s largest brands. Through a global infrastructure that enables cross-platform ad serving, data-driven creative, and currency-grade measurement, Innovid offers its clients always-on intelligence to optimize advertising investment across channels, platforms, screens, and devices. Innovid is an independent platform that leads the market in converged TV innovation, through proprietary technology and exclusive partnerships designed to reimagine TV advertising. Headquartered in New York City, Innovid serves a global client base through offices across the Americas, Europe, and Asia Pacific. To learn more, visit innovid.com or follow us on LinkedIn or Twitter.

As the Director of Information Security, you will manage all aspects of Information Security and Privacy, Certification programs, vendors’ assessments and RFPs in Innovid.

​​This role offers an opportunity to leverage and grow your existing Information Security skills and join a fast scale-up company.

You will:

  • Define the policies and establish the tools, protocols, and controls to protect the company’s assets and data
  • Develop, maintain and audit against information security policies and guidelines while balancing business, operational and organisational implications and partnering with organisational business functions, including Engineering, IT, Finance, Human Resources, Legal, and Operations.
  • Be responsible for the management and assessment of security risks across the company’s resources and recommend remediation and corrective actions, including keeping up to date with new vulnerabilities/threats and informing stakeholders.
  • Lead penetration testing, vulnerabilities and threat scanning
  • Collaborate with all relevant company departments to raise awareness of risk management concerns and to ensure security practices are flawlessly implemented
  • Ensure regulatory, and compliance requirements are satisfied (certification program, includes internal/external audits)
  • Collaborate with the commercial teams and assist the sales organisation in communicating our security practices as part of RFPs, sales, and security assessment processes.
  • Ensure the effectiveness of processes and controls to meet multiple standards, regulations, and audits, such as ISO27001, GDPR.
  • Promote and develop an awareness of different security risks and best practices across the company. Facilitate security and risk training curriculum.
  • Perform vendors’ security and risk assessments.
  • Serve as project manager/lead within security projects.
  • Work closely with the CISO
  • Lead the corporate security team.
  • Mentor junior members of the security team.

 You should have:

  • 3-7  years of IT security or information security experience 
  • 3+ years of experience in the Information Security field with SaaS B2B global companies.
  • 2+ years experience conducting compliance assessments ISO27001 and SOC2 (a must), an advantage - FEDRAMP, SSAE16 and SSAE18.
  • 2+ years of experience in implementing and managing security controls in a global organisation
  • 2+ years of experience working and implementing controls with Cloud Servicing Providers
  • Strong knowledge of current and emerging cybersecurity risks (primarily on-premise and cloud) and modern risk management methods and solutions.
  • Hands-on experience in designing, implementing, and leading security and risk management programs, including product security
  • Proven ability to engage with Senior Management and regulators
  • Experience working with vendors for penetration testing, threat assessment, etc
  • Prior experience and deep knowledge in implementing and maintaining security standards (security management frameworks, such as ISO/IEC 27001 and NIST) and Privacy regulations (GDPR, CCPA).
  • Experience with external vendors and partners contracts, negotiations, and management, including managed services.
  • Professional security certification (e.g., CISSP, CISM or equivalent) 
  • Ability to influence others and work at all levels and departments across the organisation and with external vendors and partners.
  • Excellent written and verbal communication skills and a high level of personal integrity
  • A “Can-Do” mindset and results oriented
  • Fluent in English - both written and verbal
  • Bachelor’s Degree in Information Systems, Computer Science, Information Security or other related fields

 

#LI-RB1
There is no such thing as the perfect resume, or someone that checks every box. At Innovid, we are generous with our time and knowledge, and always ready to teach. So however you identify and whatever background you bring with you, please apply if this is a role that would make you excited to come into work every day and add to Innovid.
Equal Opportunity Employer: Innovid is an equal opportunity employer, committed to our diversity and inclusiveness. We consider all qualified applicants regardless of race, color, nationality, gender, gender identity or expression, sexual orientation, religion, disability or age. We strongly encourage women, people of color, members of the LGBTQIA community, people with disabilities and veterans to apply. We are actively working to be an anti-racist organization. We're committing to creating an inclusive and equitable workplace for all of our employees. You can read more about our commitment to DEI here.
If you are located within the EEA and subject to GDPR or are a California resident subject to the California Consumer Privacy Act, click here to understand how Innovid processes your personal information and how you can exercise your rights.

This job is no longer available

Enter your email address below to get notified whenever we find a similar job post.

Unsubscribe at any time.