Chief Information Security Officer

We are looking for a strategic leader to drive the organizational readiness and implementation of our cybersecurity framework, while managing the Information Security and Cyber team with a systemic, business-oriented, and long-term perspective.

This role is for someone who understands that cybersecurity is not just a protective layer but a strategic component at the core of business operations.

If you are seeking real responsibility, managerial impact, and global exposure, we would love to meet you.

Key Responsibilities:

• Lead the development and implementation of information security and cybersecurity policies across all organizational levels – from executive leadership to operational teams.
• Oversee the daily operation of IT security systems and processes, ensuring operational continuity and ongoing monitoring.
• Execute cybersecurity strategy, including managing infrastructure, personnel, enforcement policies, organizational awareness, and turning strategy into tangible results.
• Evaluate new technologies and provide recommendations for implementation to ensure the organization stays one step ahead.

Strategic Challenges:

• Regulatory compliance: Ensure full compliance with the “Cyber Risk Management Circular” by the Israeli Capital Market, Insurance and Savings Authority, and the Israeli Privacy Protection Law, with a clear understanding of the business and legal implications.
• Global alignment: Implement the parent company’s information security policies while localizing them to the unique requirements of the Israeli market – balancing international standards with local realities.
• Risk management: Conduct regular risk assessments, penetration tests, and third-party risk management to proactively identify potential threats.
• Reporting to leadership: Present threat exposure, progress on security initiatives, and KPIs to the Cyber Committee and Board of Directors in a clear, business-focused, data-driven manner.
• Incident Response (IR): Build and manage a cybersecurity incident response team and procedures, including business continuity (BCP) and disaster recovery (DRP) exercises.
• Business-oriented mindset: Fully partner in driving organizational strategy, with business-focused thinking, not just technical expertise.

Requirements:

• 2–4 years of experience in Information Security/Cybersecurity management, preferably in the financial or insurance sectors.
• Deep regulatory expertise, including familiarity with Israeli Capital Market regulations and international frameworks such as GDPR or NIST.
• High business-level English (required for collaboration with the parent company).
• Proven experience working with senior executives and leading processes in a complex, matrixed organization – a true partner, not just a consultant, with strong interpersonal skills.
• Experience in financial institutions, banking, or insurance – a significant advantage.
• Hands-on experience with application portfolios and mitigating system security threats.
• Experience managing organizational-level patching and vulnerability management.
• Knowledge of IT infrastructure and data communication.
• Familiarity with offensive and defensive security tools and information security architecture.
• Experience managing cloud security projects (Azure / AWS / GCP).
• Knowledge of regulatory frameworks and privacy protection methodologies.
• Relevant professional certifications (CISM, CISO, CISSP).