Head of IT and Cybersecurity

ABOUT THE ROLE

The Head of IT and Cybersecurity will lead and oversee the technology strategy and operations, ensuring that the IT infrastructure and applications support the company’s objectives and growth ambitions. This individual will collaborate with senior leadership and department heads to develop and implement advanced IT solutions that align with the company’s goals.  

Some of the key responsibilities you should expect are the following: 

Strategic Leadership:  

• Develop and implement a strategic IT plan that aligns with the company’s overall business objectives and future growth.  

• Regularly review and evaluate the potential for IT innovations and solutions to enhance business performance.  

• IT architecture roadmaps and visioning. 

IT Operations Management:  

• Oversee the management of the IT infrastructure, ensuring optimal performance, reliability, and security.  

• Ensure all IT systems and applications are compliant with relevant laws, regulations, and industry standards.  

• Employee PC/computing support, deep familiarity with SaaS based solutions as well as development of IT Operations KPIs.  

Risk Management and Cybersecurity Oversight:  

• Serve as the primary owner of the company’s cybersecurity posture, including both strategic planning and operational execution of information security initiatives.  

• Implement and maintain enterprise-wide security measures such as endpoint protection, MFA, SSO, privileged access management, and vulnerability management/patching.  

• Oversee security compliance with relevant frameworks such as PCI, SOC 2, and ITGC; lead audit preparation and ensure timely remediation of findings.  

• Proactively monitor and assess security risks, lead incident response efforts, and coordinate with external MSSP or third-party experts as needed.  

Team Development and Leadership:  

• Lead a high-performing IT and cybersecurity team (current size 5+)  responsible for internal systems, infrastructure, endpoint support, and security operations.  

• Define team structure and headcount needs in alignment with growth goals, and manage relationships with external service providers where appropriate.  

• Foster a culture of continuous learning and accountability through professional development, hands-on mentorship, and role clarity.  

Risk Management:  

• Implement comprehensive cybersecurity measures to safeguard company data and intellectual property such as endpoint protection, Multi-Factor Authentication (MFA), Single Sign-On (SSO) and vulnerability management/patching solutions. Also, understanding of PCI, SOC2 and ITGC security frameworks.  

• Monitor and assess potential security breaches, ensuring a rapid response and mitigation strategy.  

goawsaidataproductdesign