Chief Information Security Officer

1 Month ago • 10 Years + • Cyber Security

Job Summary

Job Description

The Chief Information Security Officer (CISO) at PAPAYA is responsible for protecting the company's digital infrastructure, data, and internal systems from cyber threats. Key responsibilities include developing and overseeing security frameworks, monitoring real-time traffic for anomalies, leading risk assessments, ensuring compliance with data protection laws (GDPR, CCPA), overseeing identity and access management, implementing application security best practices (OWASP Top 10), managing security operations (SOC, SIEM), leading incident response, educating employees on cybersecurity, and collaborating with legal and compliance teams. The role requires expertise in cloud security, real-time threat detection, and regulatory compliance.
Must have:
  • Develop & oversee security frameworks
  • Monitor real-time traffic & mitigate risks
  • Lead risk assessments & implement mitigation
  • Ensure data protection & compliance (GDPR, CCPA)
  • Oversee IAM solutions
  • Implement application security best practices (OWASP Top 10)
  • Manage security operations (SOC, SIEM)
  • Lead incident response & forensic investigations
  • Develop & maintain security policies (ISO 27001, NIST)
  • Ensure regulatory compliance (SOC 2, PCI-DSS, ISO 27001)
Good to have:
  • Experience in fraud detection and prevention
  • Knowledge of payment security and fraud analytics

Job Details

Description

Chief Information Security Officer (CISO)

As the Chief Information Security Officer (CISO) at PAPAYA, you will be responsible for protecting the company’s digital infrastructure, data, and internal systems from cyber threats. You will develop and implement security strategies to ensure compliance, safeguard intellectual property, and mitigate cybersecurity risks. This role requires expertise in cloud security, real-time threat detection, and regulatory compliance to support a seamless and secure operational environment.


Responsibilities

Key Responsibilities:

Security & Risk Management

  • Develop and oversee security frameworks for enterprise infrastructure, including cloud environments and critical systems.
  • Monitor real-time traffic and system logs to detect anomalies and mitigate security risks.
  • Lead risk assessment initiatives to identify vulnerabilities and implement mitigation strategies.

Data Protection & Compliance

  • Ensure compliance with global data protection laws (e.g., GDPR, CCPA) and industry regulations.
  • Lead security and privacy initiatives to protect user accounts, payment information, and sensitive data.
  • Oversee identity and access management (IAM) solutions to prevent unauthorized access to critical systems and applications.

Application Security & Secure Development

  • Implement and enforce application security best practices, focusing on OWASP Top 10 vulnerabilities and secure coding.
  • Ensure secure mobile application development by integrating security controls into mobile app lifecycles.
  • Oversee Web Application Firewall (WAF) solutions to protect against web-based threats.
  • Work with engineering teams to implement DevSecOps and security automation across development pipelines.
  • Oversee penetration testing, bug bounty programs, and vulnerability management for applications and APIs.

Cyber Threat Intelligence & Incident Response

  • Establish and manage security operations (SOC), SIEM, and threat detection for real-time response to cyber threats.
  • Lead forensic investigations and incident response for cyberattacks affecting enterprise infrastructure.
  • Stay ahead of emerging threats, including hacking techniques, ransomware, and credential stuffing attacks.

Security Awareness & Collaboration

  • Educate employees and stakeholders on cybersecurity best practices.
  • Work closely with legal, compliance, and risk teams to align security policies with business goals.
  • Manage relationships with third-party security vendors and technology partners.

Policies & Compliance

  • Develop & Maintain Security Policies – Create and enforce cybersecurity policies aligned with ISO 27001, NIST, GDPR, and industry standards.
  • Ensure Regulatory Compliance – Oversee adherence to compliance frameworks (SOC 2, PCI-DSS, ISO27001, and ISO27701) and conduct security audits.
  • Risk & Incident Management – Implement risk assessment strategies and incident response plans to mitigate security threats.
  • Governance & Reporting – Provide security insights to leadership, track KPIs, and ensure business alignment with security objectives.

Nice to Have:

  • Experience in fraud detection and prevention, including unauthorized access mitigation and financial fraud protection.
  • Strong knowledge of payment security, identity verification, and fraud analytics.


Requirements


Qualifications & Experience:

  • B.Sc. degree in Computer Science, Software Engineering, or a related field.
  • 10+ years of experience in cybersecurity, with at least 5 years in a leadership role.
  • Expertise in application security, including OWASP Top 10, secure mobile application development, and WAF implementation.
  • Strong knowledge of identity security, cloud security, and enterprise risk management.
  • Experience securing cloud-based services and large-scale enterprise environments.
  • Familiarity with SOC 2, ISO 27001, GDPR, and industry compliance standards.
  • Familiarity with working with the following security tools:
  • CSPM (Cloud Security Posture Management)
  • VPNs
  • Firewalls
  • XDR (Extended Detection & Response)
  • Mail protection tools
  • Other security solutions for endpoint protection, threat intelligence, and monitoring.
  • Industry certifications preferred (CISSP, CISM, OSCP, GIAC, AWS Security).


Similar Jobs

PwC - Senior Security Engineers (Entra ID/AD)

PwC

Sofia, Sofia City Province, Bulgaria (On-Site)
6 Months ago
Axinous - Senior Manager - Indirect Tax

Axinous

Hyderabad, Telangana, India (Remote)
1 Month ago
Axinous - Senior Professional Services Consultant - WEST

Axinous

California, United States (Remote)
3 Weeks ago
Zazz - Cloud Engineer (Azure)

Zazz

(Remote)
1 Month ago
Skillz - Lead Application Security Engineer

Skillz

Las Vegas, Nevada, United States (On-Site)
1 Week ago
GLG - Senior Security Operations Engineer

GLG

Gurugram, Haryana, India (Remote)
5 Months ago
DOTSOFT SA - Security Engineer

DOTSOFT SA

Greece (On-Site)
1 Week ago
PwC - IN-Associate–ERP Controls- ITRA– Advisory – Mumbai

PwC

Mumbai, Maharashtra, India (On-Site)
5 Months ago
PwC - Cloud Security | Manager | Cyber Security | Technology Consulting

PwC

Dublin, County Dublin, Ireland (On-Site)
6 Months ago
PwC - Cyber Security Strategy Manager

PwC

Amsterdam, North Holland, Netherlands (Hybrid)
2 Months ago

Get notifed when new similar jobs are uploaded

Similar Skill Jobs

Zazz - Cloud Engineer (AWS)

Zazz

(Remote)
1 Month ago
Velotio Technologies - Cloud Security Engineer

Velotio Technologies

Pune, Maharashtra, India (Remote)
6 Days ago
Onward Search - Java Developer

Onward Search

San Jose, California, United States (Hybrid)
1 Week ago
Fortis Games - Senior DevOps Engineer

Fortis Games

Brazil (On-Site)
2 Months ago
Axinous - Account Executive - Risk Management

Axinous

Bengaluru, Karnataka, India (On-Site)
3 Months ago
Hike - Software Development Engineer - Security

Hike

Delhi, India (Remote)
5 Days ago
ByteDance - Cloud Security Solution Architect, APAC

ByteDance

Singapore (On-Site)
5 Months ago
The Walt Disney Company - Staff Security Specialist, Information Security - Lead Security Solution Architect

The Walt Disney Company

Orlando, Florida, United States (On-Site)
1 Week ago
Axinous - Account Executive, Enterprise - Maryland/Virginia

Axinous

Maryland, United States (Remote)
2 Weeks ago
Salesforce - Director, Network Security Engineering

Salesforce

Bengaluru, Karnataka, India (On-Site)
6 Months ago

Get notifed when new similar jobs are uploaded

Jobs in Tel Aviv-Yafo, Tel Aviv District, Israel

Tesla - Senior Service Technician

Tesla

Tel Aviv-Yafo, Tel Aviv District, Israel (On-Site)
1 Month ago
NVIDIA - Manager, Software Engineering

NVIDIA

Tel Aviv-Yafo, Tel Aviv District, Israel (On-Site)
1 Month ago
Plarium - Product Manager, Ad-Tech

Plarium

Herzliya, Tel Aviv District, Israel (On-Site)
1 Month ago
NVIDIA - Senior STA Engineer

NVIDIA

Tel Aviv-Yafo, Tel Aviv District, Israel (On-Site)
1 Month ago
Moon Active - Assistant Controller

Moon Active

Tel Aviv-Yafo, Tel Aviv District, Israel (Hybrid)
6 Days ago
Pazu Games - HR Growth Partner

Pazu Games

Israel (On-Site)
3 Months ago
NVIDIA - Senior DFT Engineer

NVIDIA

Yokne'am Illit, North District, Israel (On-Site)
3 Days ago
NVIDIA - Senior Malware Research Architect

NVIDIA

Tel Aviv-Yafo, Tel Aviv District, Israel (On-Site)
2 Months ago
PAPAYA - Talent Marketing Specialist

PAPAYA

Tel Aviv-Yafo, Tel Aviv District, Israel (On-Site)
6 Days ago
NVIDIA - Senior Physical Design Verification Layout Engineer

NVIDIA

Tel Aviv-Yafo, Tel Aviv District, Israel (On-Site)
1 Month ago

Get notifed when new similar jobs are uploaded

Cyber Security Jobs

Barracuda Networks  Inc  - Security Automation Engineer

Barracuda Networks Inc

Bengaluru, Karnataka, India (Hybrid)
4 Months ago
The Walt Disney Company - Vice President, Global Security - APAC

The Walt Disney Company

Singapore, Singapore (On-Site)
4 Months ago
Epic Games - Threat Intelligence Manager

Epic Games

(On-Site)
1 Week ago
Onward Search - Senior Software Engineer

Onward Search

Irvine, California, United States (Remote)
1 Month ago
Normalyze - Performance Test - Senior Engineer - Solutions - Data Security - India

Normalyze

Bengaluru, Karnataka, India (Remote)
4 Months ago
Redhorse Corp - Industrial Security Policy SME

Redhorse Corp

Arlington, Virginia, United States (On-Site)
4 Months ago
PwC - Digital Risk Solutions Manager

PwC

Vancouver, British Columbia, Canada (On-Site)
5 Months ago
NVIDIA - Offensive Hardware Security Researcher

NVIDIA

Santa Clara, California, United States (On-Site)
2 Months ago
ION - SOC Manager

ION

Noida, Uttar Pradesh, India (On-Site)
5 Months ago
Appirits - Security Engineer

Appirits

Shibuya, Tokyo, Japan (Hybrid)
6 Days ago

Get notifed when new similar jobs are uploaded

About The Company

Since 2019, Papaya has been committed to shaping the future of gaming through an innovative and forward-thinking approach to game development. We believe that gaming should be about more than just luck, which is why our games are designed to reward skill, strategy, and perseverance. 


Ranked by Dun’s 100 as one of the top 50 hi-tech companies in Israel to work for.

Tel Aviv-Yafo, Tel Aviv District, Israel (On-Site)

Tel Aviv-Yafo, Tel Aviv District, Israel (On-Site)

Tel Aviv-Yafo, Tel Aviv District, Israel (On-Site)

Tel Aviv-Yafo, Tel Aviv District, Israel (On-Site)

Tel Aviv-Yafo, Tel Aviv District, Israel (On-Site)

Tel Aviv-Yafo, Tel Aviv District, Israel (On-Site)

Tel Aviv-Yafo, Tel Aviv District, Israel (On-Site)

Tel Aviv-Yafo, Tel Aviv District, Israel (On-Site)

Tel Aviv-Yafo, Tel Aviv District, Israel (On-Site)

Tel Aviv-Yafo, Tel Aviv District, Israel (On-Site)

View All Jobs

Get notified when new jobs are added by PAPAYA

Level Up Your Career in Game Development!

Transform Your Passion into Profession with Our Comprehensive Courses for Aspiring Game Developers.

Job Common Plug