Find your dream job at a Trinity portfolio company.

Diversity, Equity, and Inclusion

It is our duty to create and advance a diverse and inclusive company where all Taulians feel they are celebrated. All individuals are welcomed, free to express themselves and rewarded for showing up as authentically every day. By hiring women, people of color, individuals with disabilities, veterans, people of all sexual orientations and from underrepresented and marginalized communities, Taulia will revolutionize fintech.

About the Job

We are seeking a dynamic, hands-on Director of Security with a strong sense of ownership and accountability to lead our enterprise information security and IT risk management program. This role is crucial to Taulia's next growth phase, acting as a key representative of our security posture to internal and external stakeholders. The Director will actively engage in safeguarding our digital assets, ensuring compliance with financial and data protection regulations, championing key improvements that improve our Security controls and process, and aligning security initiatives with business objectives. Success requires a strong urgency mindset, exceptional attention to detail, the ability to build consensus and drive cross functional change, and a willingness to be deeply involved in day-to-day operations.

Responsibilities

Strategic Security Leadership:

• Lead information security and risk management, advising executives on strategy and driving improvements for customer data protection.

Hands-On Policy Development and Compliance:

• Oversee policy development and compliance with regulations (PCI-DSS, SOX, SOC, ISO, GDPR, CCPA), ensuring successful audits and certifications.

Risk Management and Threat Mitigation:

• Identify and mitigate risks, implement security best practices, and manage continuous monitoring and threat response.

Threat Modeling in Software Development:

• Integrate threat modeling into development, collaborating with teams to ensure secure coding and architecture.

Incident Response and Recovery:

• Develop and manage incident response plans, ensuring swift investigation and resolution of security incidents.

Security Architecture and Solutions:

• Review and secure applications, cloud environments, and processes, addressing vulnerabilities.

Team Leadership and Development:

• Build and mentor a high-performing security team focused on continuous improvement.

Stakeholder Engagement:

• Act as the security liaison with internal teams, clients, and partners, ensuring clear communication.

Vendor and Third-Party Management:

• Oversee third-party security, ensuring compliance with company standards.

Security Awareness and Training:

• Lead security awareness programs, ensuring staff understand and follow policies.

Budget and Resource Management:

• Manage the security budget, resources, and investments to improve security controls.

Skills, Knowledge and Experience required

Experience:

• Minimum of 10 years in information security, with at least 5 years in a leadership role.
• Proven track record in highly regulated, dynamic environments, preferably in financial services or fintech.
• Demonstrated ability to act with urgency and prioritize effectively.
• Hands-on experience with security technologies and practices.
• Experience with compliance and audits related to PCI-DSS, SOX, SOC 1, SOC 2, ISO 27001, ISO 27011, ISO 9001, GDPR, CCPA.
• Customer-facing experience; able to represent the organization to external parties.
• Experience with vendor assessments and management.

Technical Expertise:

• Extensive experience with cloud-based technologies and environments.
• Deep understanding of cloud security frameworks and best practices.
• Strong knowledge of cybersecurity risk management, corporate governance, and incident response strategies.
• Experience integrating threat modeling into software development.
• Innovative mindset with the ability to implement new technologies and processes.

Skills:

• Exceptional attention to detail and commitment to excellence.
• Outstanding verbal and written communication skills.
• Ability to interact effectively with stakeholders at all levels.
• Strong leadership, team-building, and mentorship abilities.
• Strategic thinker with a proactive and creative approach to problem-solving.
• High level of accountability and a hands-on approach to leadership.

​​​​​​​Professional Certifications:

• CISSP, CISM, or CISA certifications are highly desirable.

About Taulia

Taulia is a fintech company that is part of the SAP group. More than 2 million businesses in over 150 countries collaborate on our network. Our customers include Airbus, AstraZeneca, and Nissan. We help them and their suppliers access cash when and where they need it most. Some of our customers have improved their working capital by more than $1 billion while making their supply chains more resilient and sustainable. For more information, please visit www.taulia.com.