Head of IT & Security - Secure the Future of Urban Mobility
Join Masabi, the company revolutionizing fare payment for public transport globally! We're not just building software; we're powering the journeys of millions in over 250 locations, including major cities worldwide. Our Justride platform is a game-changer, enabling riders to seamlessly pay via mobile phones, ticket machines, or even contactless bank cards. We've partnered with industry giants like Uber, Moovit, and Transit, thanks to our innovative mobile ticketing SDK.
Are you a passionate cybersecurity leader ready to make a real-world impact? At Masabi, you won't just be protecting data; you'll be safeguarding the infrastructure that keeps cities moving.
The Mission: Secure, Scale, and Enable
As our Head of IT & Security, you'll spearhead a critical function that underpins our entire business. You'll be responsible for securing our systems, ensuring resilient infrastructure, and enabling a safe, scalable, and mission-ready environment for Masabi.
This is more than just a security role; it's an opportunity to represent Masabi externally in security engagements and champion internal programs that safeguard our people, platform, and customers. You'll lead a small but mighty team spanning IT and security, with ample opportunity for growth through internal collaboration and vendor partnerships.
If you're a cybersecurity aficionado with a passion for cloud infrastructure and empowering high-performing teams within a rapidly growing SaaS company, we want to hear from you! And if you bring Infrastructure Operations expertise, there's even greater potential to shape the technical vision for our AWS infrastructure, lead our SRE team, and own uptime, cost efficiency, and potentially the full release lifecycle.
Location
Choose your own adventure! This role offers hybrid or remote options for candidates based in the UK, or fully remote opportunities for those located in Canada (East Coast) or Colombia.
What You'll Be Doing:
Security & Compliance Leadership:
Craft and execute Masabi's global security strategy across infrastructure, endpoints, SaaS, and application layers.
Manage audits and ensure compliance with key frameworks: ISO27001, SOC 2, GDPR, and PCI DSS.
Lead incident response efforts, including drills and root cause analysis.
Own the security risk register and drive mitigation progress across all teams.
Develop and deliver engaging security education and awareness programs across the business.
Customer Trust & Compliance Engagement:
Represent Masabi in customer security engagements, RFPs, due diligence processes, and assurance reviews.
Align internal security posture with customer contract requirements.
Conduct periodic security reviews with key customers.
Own and manage end-to-end PCI compliance.
Corporate IT Infrastructure & Operations:
Lead the development and implementation of corporate IT policies and processes (acceptable use, device management, SaaS access).
Oversee the IT Helpdesk, device lifecycle, endpoint security, MDM, and SaaS governance.
Ensure robust business continuity and disaster recovery capabilities.
Manage procurement and vendor relationships for IT tooling.
Cross-Functional Leadership:
Lead, mentor, and develop a high-performing IT & Security team, fostering a culture of trust and excellence.
Partner with Engineering, Infrastructure, Legal, and Sales on secure systems and contracts.
Contribute to M&A due diligence and post-integration activities.
Provide strategic security reporting to executive leadership.
What You'll Bring to the Table:
Proven leadership experience in IT and security within a SaaS or tech-led business.
Deep understanding of ISO27001, SOC 2, PCI DSS, and GDPR.
Expertise in incident response, risk management, and audit readiness.
Exceptional communication skills with experience in customer-facing security roles.
Hands-on experience with IT systems (e.g., SSO, MDM, endpoint protection, Google Workspace, Salesforce, D365).
Ability to navigate complex technical and business trade-offs.
Bonus Points:
Experience in regulated/public sector environments.
Relevant certifications: CISSP, CISM, CISA, ISO Lead Auditor.
Demonstrated success in scaling security maturity through growth or M&A.
Perks & Benefits: Invest in Yourself
25 days of holiday per year, with the option to buy an additional 5 days (pro-rated).
Comprehensive Private Healthcare via AXA, including pre-existing conditions and mental health support.
Life Insurance.
Menopause support.
Choice of workstation.
Opportunity to work remotely for up to 3 months per year from anywhere in the world (some limitations apply).
Pension scheme.
Training allowance of up to £1000 per year.
£200 annual allowance for home office needs or improvements.
Enhanced family leave pay.
Cycle to work scheme.
Regular social gatherings with a monthly allowance for each employee.
A fun and collaborative environment where you can make a real difference in the world.
Why Masabi?
Driven by Purpose: We believe in simplifying journeys and making transit accessible to all.
Encouraged to Accelerate: We empower our people to drive their own career growth and development.
Advancing with Empathy: We prioritize people and foster a culture of learning and support.
Ready to power the future of urban mobility? Join Masabi! We are committed to creating an inclusive and welcoming environment for all. We encourage applications from underrepresented backgrounds and value diverse perspectives.