Manager of Security and Compliance bei Ollion

OUR STORY

Let’s be honest: there are lots of people out there doing what we do. We’re just not convinced they’re doing it right. Businesses are hungry for innovation and opportunity, but not at the cost of their independence. At Ollion, we’ve connected companies and capabilities around the world to help ambitious organizations make the most of their transformation and leave the status quo in the dust.

WORKING AT OLLION

Innovation is risky. It demands bold steps and big questions, but that’s the price of making change. We’ve got our head in the cloud and two feet on the ground, channeling tech’s endless potential towards a single goal: making a world of difference. And we’re building a global team to do just that— a team capable of making game-changing breakthroughs without ever losing sight of the people it will impact. This is more than consulting. This is the change you can be.

THE OLLION DIFFERENCE

At Ollion, we’re all in on your independence. Our teams are seasoned. Our solutions are straightforward—sometimes even groundbreaking. And our engagements? Exactly as long as you want them to be. We deliver fresh thinking and hard-earned insight in a way that works for you and your customers, arming your organization with everything you need to make your transformation truly mean something.

WORKING WITH OLLION (our clients’ experiences)

Progress matters more than process. Our global team of cloud-native pros is all about creating new and better ways to work—not just by solving your tech challenges, but by using technology to solve your business challenges. We keep the formulas, frameworks, and ten-point plans to a minimum, tackling your most pressing problems with a proprietary mix of good-old-fashioned ingenuity and refreshing humanity.

As the Manager of Security and Compliance, you will play a pivotal role in helping to drive the organization’s comprehensive, long-term strategy for Security, and Risk & Compliance functions in alignment with business objectives.  The core goal of this position is to, safeguard the company against internal and external threats and ensuring a constant state of audit readiness. This position requires an individual who possesses thought leadership in their areas of expertise, the ability to communicate the vision and hands-on involvement with a start-up mentality.  You will manage a global team responsible for the day-to-day management of the organization’s security programs, and applicable compliance frameworks.

• Lead, mentor, and manage team of  direct reports responsible for cloud security and risk and compliance analysis.

• Develop and maintain policies, standards, processes, and tools that ensure cyber readiness, regulatory compliance, and operational excellence in alignment with business goals.

• Act as the company’s subject matter expert on industry regulations and provide compliance guidance to Ollion and our Client's. You'll also design and embed compliance processes into Client assessments, ensuring they’re executed effectively — whether handled in-house or through trusted partners.

• Uphold Internal Security Standards: Oversee Ollion’s IT’s infrastructure ensuring systems are secure, monitored, and maintained according to best practices.

• Mature the company's security program through proactive exercises, including annual penetration testing, disaster recovery simulations, and CSPM.

• Oversee the development, implementation, and enforcement of security policies and procedures, championing a Zero Trust architecture based on the principle of least privilege and Role-Based Access Control (RBAC).

• Lead the incident response process, determining severity, assigning resources, and ensuring swift containment of Security and compliance threats.

• Hands-on experience with security tools such as SIEM, DLP, endpoint detection and response (EDR), and vulnerability scanning.

• Proficiency with endpoint management solutions (e.g., Intune MDM, ManageEngine RMM) and ticketing systems (e.g., Freshservice).

• Manage and optimize security tools, including SIEM (Microsoft Sentinel), the Microsoft Defender suite, and secret scanning solutions for development environments.

• Lead and manage all compliance programs and audits

• Act as the primary liaison with external partners, including auditors and virtual CISO (vCISO) providers.

• Evaluate emerging technologies and lead strategic digital initiatives to enhance operational efficiency and business agility.

• Manage relationships with external vendors and technology partners; negotiate contracts and ensure service levels are met.

• Undertake any other duties of a similar level and responsibility as may be required from time to time.

Expertise you Bring:

• 5+ years of experience in a Security or Compliance role, with at least 2 years in a leadership position managing a technical team. 

• Understanding and experience in Cloud Technologies. Should possess general familiarity across all three major CSPs (GCP, AWS and Azure).

• Proven track record of successfully leading and passing audits for major compliance frameworks (e.g., SOC 2, ISO 27001, ISO 42001 and ISO 27090)

• Strong and practical knowledge of industry adopted frameworks and methodologies (MITRE ATT&CK, CIS, NIST, ISO, etc.)

• Experience in systems such as Microsoft Sentinel, Microsoft Defender Endpoint and Cloud Apps, Microsoft Entra, and Google Administration.

• Strong knowledge of networking, identity access policies, and security best practices for cloud-based environments.

• Communication skills: Excellent verbal and written communication skills to effectively interact with customers, internal teams, and stakeholders.

• Problem-solving skills: Strong analytical and problem-solving abilities to identify and resolve issues and challenges, efficiently and timely.

• Time management: Effective time management skills to lead complex, cross-functional technology projects and various other tasks simultaneously.

• Proactive approach: Being proactive in identifying potential issues, opportunities for improvement, and going the extra mile to ensure Ollion’s success.

• Team player: Collaborating effectively with other teams within the organization, such as sales, marketing, customer support, and product development.

• Adaptability: Being adaptable to evolving business needs, unplanned security challenges and embody a collaborative “all hands on-deck” mentality when necessary.

• Exceptional written and verbal communication skills, with the ability to explain complex technical concepts to non-technical stakeholders

• Demonstrated experience in developing and managing departmental budgets and negotiating with vendors.

• Security certification(s) CCSP, CISSP, CISM,  CompTIA Security+, CompTIA PenTest+, GIAC Information Security Fundamentals (GISF), GIAC Security Essentials (GSEC), (ISC)² Associate, (ISC)² Systems Security Certified Practitioner (SSCP), ISACA Cybersecurity Fundamentals Certificate, (Security+, ISC2, ISACA, CompTIA), Risk Management  (CRISC) 

• B.S. in  Computer Science, Information Technology, Information Systems, or IT Management.

• Ability to work in a fast paced team environment

BENEFITS & PERKS FOR WORKING AT OLLION

Our employees multiply their potential because they have opportunities to: Create a lasting Impact, Learn and Grow professionally & personally, Experience great Culture, and Be your Whole Self!

Beyond an amazing, collaborative work environment, great people, and inspiring, innovative work, we have some great benefits and perks:

• Benchmarked, competitive, in-market total rewards package including (but not limited to): base salary & short-term incentive for all employees
• Virtual by default, small but Global organization; ‘learn wherever, whenever’ frees our people from a rigid view of learning and growth
• Retirement planning (i.e. CPF, EPF, company-matched 401(k))
• Globally, we build benefit plans that offer choices for whatever stage in life our employees are in and allow for flexibility as life happens.  Employees have access to a fully comprehensive benefits package to choose the medical, dental, and vision insurance plan that best fits their lives. In addition to great healthcare coverage, we also offer all employees mental health resources and additional wellness programs.
• Generous time off and leave allowances
• And more!

DIVERSITY AT OLLION 

One of our cultural keystones, ‘Find the angle’ recognizes that every individual has different aspirations, needs and brings a unique perspective. 

We value diversity, inclusion, and equity (DE&I) as core to our success. We believe that a diverse workforce brings together unique perspectives, experiences, and ideas, leading to innovation, creativity, and better outcomes for our clients and our organization. We are on a journey and are committed to building a workplace that celebrates and respects individuals from all backgrounds, including but not limited to race, ethnicity, gender, sexual orientation, age, disability, and cultural heritage.  

As our commitment to diversity and inclusion is reflected in our: 

• Awareness and sensitisation programs: to create awareness and sensitisation. We encourage open dialogue, active listening, and mutual respect, creating a safe and supportive environment for everyone to contribute their unique perspectives and ideas. 

• Dedicated efforts to building diverse teams: that leverage the strength of our differences to tackle complex challenges and drive innovation. By embracing diversity, we broaden our collective knowledge, enhance problem-solving capabilities, and unlock limitless potential for our employees.

All your information will be kept confidential by the Company. Ollion is an equal opportunity employer. We celebrate diversity and we are committed to creating an inclusive environment for all employees. Ollion does not discriminate in employment on the basis of race, color, religion, sex, national origin, political affiliation, sexual orientation, marital status, specially abled, genetic information, age, membership in an employee organization, parental status, military service, or other non-merit factor.

Ollion is an equal opportunity employer. We celebrate diversity and we are committed to creating an inclusive environment for all employees. Ollion does not discriminate in employment on the basis of race, color, religion, sex (including pregnancy and gender identity), national origin, political affiliation, sexual orientation, marital status, disability, genetic information, age, membership in an employee organization, parental status, military service, or other non-merit factor.