Security Assurance Lead



Posted on Monday, May 20, 2024

About Us:

Zepto is a rapidly-scaling provider of real-time, account-to-account payments solutions for merchants and is reimagining the way money moves through the always-on, digital-first economy.

Our growing team across Australia allows for like-minded, talented, passionate people motivated to help us deliver on our brand promise to #LevelThePayingField

At Zepto we believe in the power of positive human experiences, and that a deep sense of belonging creates cohesion in our culture. So, even in a remote-first team, you will be a contributor and custodian of that culture. You will also enjoy solving complex problems, and play a key role in creating something truly special as we focus on delivering ‘a better way to pay’ at Zepto.

The Role You’ll Play:

As a Security Assurance Lead you will have the opportunity to play a significant role in ensuring that our product is safe, secure and compliant by implementing Zepto’s technical security assurance practices.

Reporting to the Head of Information Security, you will own the definition and implementation of the technical security testing and assurance program.

You will work closely with our Engineering, Operations, Legal, Risk & Compliance and Internal IT teams to implement a pragmatic technical security assurance program that will support Zepto to deliver on its external obligations while preserving an employee focused culture.

Within the Security team, you are the go to person for:

  • Security assurance
  • Disaster recovery planning
  • Data classification and management

Working in a start-up, means you get the opportunity to flex your skills in a variety of ways. We are agile and always willing to roll up our sleeves to get things done. You can, however, expect your day to day to be involved in the following:

  • Establish and document technical security assurance plans for the Zepto application and cloud infrastructure.
  • Conduct regular security assessments and internal audits for the Zepto application and cloud infrastructure to test the effectiveness of our security controls.
  • Build automations for security controls, monitoring and assurance testing.
  • Define and implement data classification, retention and deletion practices.
  • Own and implement Disaster Recovery Plans for security.
  • Support the design and implementation of security controls across our cloud infrastructure.
  • Support our data loss prevention program.
  • Support compliance audits.
  • Support the response for security incidents in collaboration with the rest of the information security team.

What You’ll Bring to the Table

Our ideal candidate will have:

  • Proven knowledge of security best practices and fundamentals and how to implement them in a scale-up environment
  • A deep understanding of risk, risk appetite and balancing risk with commercial outcomes
  • Experience in implementing security controls in a cloud infrastructure (AWS)
  • Hands on experience in automating security controls
  • Familiarity with security compliance frameworks such as ISO 27001, NIST, SOC 2
  • 5+ years of experience working in an security engineering role with exposure to vulnerability management, security controls testing, cloud security
  • Strong and empathic communicator with both technical and non-technical teams

What's on Offer:

Zepto has an inspiring Founder story and is a customer-focused, culture-first organisation.

We’re all striving to achieve our mission of enabling a better way to pay for consumers and merchants and do so while fostering an inclusive culture where you will work with and learn from world-class talent in their areas of expertise.

As a remote-first organisation, you’ll feel connected through our various initiatives and enjoy the flexibility that comes with remote work. To effectively support our enterprise customers, this role will ideally be based in Melbourne or Sydney where we also have premium Hub locations for co-working and connection.

You'll join a team that is on a mission to change the world of payments and work with incredibly talented people in the space. We offer an Employee Share Option Plan for all employees, access to an annual learning budget, Paid Parental Leave and wellbeing support.

Apply today to express your interest.

Please note that as an organisation in the regulated Financial Services industry, Background Checks will be required as part of the recruitment process.