Bestman Solutions

www.bestmansolutions.com

1 Job

14 Employees

About the Company

As a specialist cyber security practice, we believe that people are an organisation’s most valuable asset.

The success of an organisation depends on hiring the right people, and this is where we come in.

Drawing on our network of cyber security experts and 15 years of experience, we work with clients on key hires, contractor placements, multi-hire, and statement of work projects.

for help with your next placement

Listed Jobs

Company Name: Bestman Solutions
Job Title: Security Lead
Job Description: Job Title: Security Lead Role Summary Lead the development and continual improvement of the cybersecurity risk framework for a SaaS organization, ensuring alignment with business objectives and maintaining ISO 27001 certification. Drive security governance, embed security practices across product and engineering, oversee third‑party risk, and report to the board. Expectations - Autonomously steer security strategy in a lean, high‑growth environment. - Translate technical risk into actionable business insights. - Engage senior stakeholders and provide board‑level reporting. - Balance risk, delivery, and commercial priorities. Key Responsibilities - Define and evolve the organization’s cybersecurity risk framework. - Lead ISO 27001/ISMS implementation and sustain audit readiness. - Maintain risk registers, governance, and reporting processes. - Embed security into architecture, development, and operations. - Manage third‑party and supplier risk across multiple SaaS entities. - Support GDPR compliance and other regulatory requirements. - Foster a security‑aware culture and deliver awareness programs. - Deliver regular risk and security status to the board. Required Skills - Proven experience in SaaS/cloud security environments. - Deep knowledge of cyber risk, GRC, ISO 27001, and GDPR. - Strategic thinking with strong judgment on risk vs. delivery trade‑offs. - Excellent communication, simplifying complex topics for executives. - Collaborative mindset, effectively partnering with product and engineering teams. Required Education & Certifications - Bachelor’s degree in Computer Science, Information Security, or related field. - ISO 27001 lead auditor or equivalent certification. - Additional certifications such as CISSP, CISM, or CISA preferred.