VP of Security

VP of Security

Marketplacer is rapidly growing and we are investing heavily in building trusted, secure foundations for our global SaaS platform. As we scale across enterprise customers and regulated markets, we are looking for a strategic and hands-on VP of Security to lead our security, privacy and AI governance function.

This is a critical leadership role responsible for protecting Marketplacer’s platforms, customers, people and data — while enabling innovation and growth. You will lead our security strategy, compliance and audit programmes, incident response capability, and emerging AI governance practices across the business.

Importantly, this role combines executive-level leadership with practical operational oversight in a lean, high-performing environment. The role reports directly to the CTO.

What we value in people:

• Strategic and proactive people who monitor the threat and regulatory horizon and adjust ahead of change, not in response to it.
• Decisive leaders who can operate under incident pressure and make high-consequence calls with incomplete information.
• Influential communicators who can translate complex security, privacy and AI governance questions for executives, customers, regulators and engineers with equal clarity.
• Collaborative team players who partner openly with Platform Technology, Legal, People and Product rather than treating security as a silo.
• Evidence-based thinkers who present data, trends and trigger thresholds — not just narrative assurances.
• Accountable leaders who carry residual risks in writing and report against them without euphemism.
• People who model responsible AI use through personal practice, not just through policy.
  

What you will bring:

• Significant experience leading security functions within SaaS, technology or regulated environments.
• Deep expertise across ISO 27001, SOC 2, GDPR, PCI DSS and adjacent regulatory frameworks; experience leading multi-framework audit programmes.
• Proven Incident Commander experience including breach counsel engagement and insurer-led IR coordination.
• AI governance literacy — OWASP Agentic Top 10, EU AI Act and equivalents, non-human identity and model/provider risk.
• Technical acumen sufficient to set tooling strategy and review detection and IR posture, without displacing the Senior Cyber Engineer’s operational ownership.
• Customer-facing and board-facing communication and negotiation skills.
• People leadership experience — able to hire, develop and retain a small, senior, load-bearing team.
• Sound budget and vendor management; able to defend a multi-year cost envelope and trigger-based investment model.
• Experience with tools and platforms such as CrowdStrike, Netskope, JumpCloud, JAMF, Google Workspace and Vanta will be highly regarded.

What you will be doing

• Own and continuously improve Marketplacer’s Information Security Management System (ISMS) and overall security posture, with quarterly reporting to the Information Security Governance Committee (ISGC).
• Lead the audit programme across ISO 27001 surveillance, SOC 2 Type II cycles, GDPR, PCI DSS and adjacent regulatory obligations — targeting zero material findings.
• Act as Incident Commander during material security or privacy incidents; engage insurer-held IR retainers and breach counsel; run post-incident reviews and feed lessons into detection and control improvements.
• Own Marketplacer’s AI governance baseline — including non-human identity management, human-in-the-loop controls for consequential actions, and OWASP Agentic Top 10 reviews — applied across internal and vendor-supplied AI agents.
• Lead the customer trust programme: respond to security questionnaires, support key contract negotiations, and provide security assurance to enterprise customers and the board.
• Govern and manage the external security vendor ecosystem, including ISO/SOC auditors, pen test vendors, Safestack, Vanta, CrowdStrike, Netskope, Datadog (SIEM) and MDM tooling.
• Provide direct leadership to the security and IT function, fostering a culture of continuous improvement and shared ownership of security across the business.
• Manage the security function’s budget and vendor contracts, maintaining a defendable multi-year cost envelope aligned to the ISGC’s trigger-based investment model.

If you are a strategic security leader with a passion for building pragmatic, modern security programmes in a high-growth global technology company, we would love to hear from you.

At Marketplacer, we value diversity and inclusivity in all its forms, including acknowledging and addressing imposter syndrome. We believe that everyone has something unique and valuable to bring to the table, and we strive to create a supportive work environment where everyone feels confident and empowered to succeed.

Marketplacer is a world-leading technology Software as a Service (SaaS) company equipped with all the tools and functionality to supercharge commerce, building successful and scalable online marketplaces, at speed. Our leading marketplace solution takes business beyond physical stores and inventory holdings — making it easy to sell what you don’t own.