Head of Product Cybersecurity

About the position

The Head of Product Cybersecurity will be responsible for developing and executing a comprehensive cybersecurity strategy to protect the integrity, confidentiality, and availability of all systems, data, and processes involved in the production, processing, and distribution of Cubic solutions. This role will ensure that Cubic's solutions and payment systems are secure from cyber threats, comply with PCI standards, align with IEC 62443, where applicable, and adhere to payment agencies requirements. The Head of Product Cybersecurity will lead a team of cybersecurity professionals and work closely with other executives to align cybersecurity initiatives with business objectives.

Responsibilities

• Develop, implement, and oversee a robust cybersecurity strategy tailored to the industry, IEC 62443, and payment systems Cubic produces.
• Align cybersecurity efforts with the company's overall business goals.
• Lead, manage and empower a team of cybersecurity professionals, fostering a culture of security awareness across the organization.
• Identify, assess, and mitigate cybersecurity risks specific to produce production, processing, distribution, and payment systems.
• Conduct regular risk assessments and security audits, addressing vulnerabilities, ensuring applicable standard compliance, and meeting payment agency standards.
• Work with the CISO to establish a cybersecurity incident response plan for Cubic's solutions, ensuring quick and effective handling of any breaches or attacks.
• Oversee post-incident analysis and implement improvements to prevent future incidents, with a focus on maintaining compliance with PCI and payment agency's requirements.
• Collaborate with suppliers, partners, third-party vendors, and payment processors to enforce cybersecurity standards across the supply chain and payment systems.
• Ensure compliance with relevant cybersecurity regulations and standards, including PCI DSS, GDPR, CCPA, and industry-specific requirements.
• Stay updated on evolving cybersecurity laws and regulations, adjusting policies and practices accordingly.
• Oversee the implementation and maintenance of security technologies, including firewalls, intrusion detection systems, encryption protocols, and payment processing security measures within Cubic's solutions.
• Promote cybersecurity awareness and education across the organization, providing training and resources for employees at all levels.
• Work closely with other executives, such as the CDO and CTO, to integrate cybersecurity into all aspects of the business.

Requirements

• Bachelor's degree in Cybersecurity, Information Technology, Computer Science, or a related field.
• Minimum of 10 years of experience in cybersecurity, with at least 5 years in a leadership role, preferably in the payment industry.
• Relevant certifications such as CISSP, CISM, CISA, or PCI-related certifications are a plus.

Nice-to-haves

• Master's degree preferred.

Benefits

• Health insurance
• 401k
• Paid holidays
• Flexible scheduling
• Professional development