Privacy, Trust & Safety Lead

We are hiring an InfoSec Lead to own information security, trust, and compliance at Pulsate. You will sit in the Office of the COO and run the programmes that keep our financial institution customers confident in how we handle their data.

Today this work sits across the COO, the CTO, and external consultants. As we move toward SOC 2 Type II and other end to end security and compliance audits, we need a dedicated owner. This is the role.

You will own our security and compliance frameworks, our customer and partner-facing InfoSec posture, and the practices that make security a competitive advantage for Pulsate.

What You’ll Do

• Own the SOC2 Type II and ISO 27001 programmes end-to-end, including audit prep, evidence collection, and external auditor relationships

• Maintain the security policy stack, risk register, and incident response runbook

• Run the response to customer and vendor InfoSec questionnaires, due diligence, and partner integration security reviews

• Own the InfoSec touchpoint for partner relationships, including regular updates and joint security reviews

• Partner with Engineering on secure design, access controls, and data handling for the shared customer data layer

• Own the privacy and compliance lane, including state-level exposures such as California AB 45, and run security awareness through KnowBe4

• Manage the transition from external InfoSec consultancy to in-house ownership, with a glide path rather than a cliff
  

  Who We’re Looking For

• 5 to 8 years in information security, with at least 2 years owning a SOC 2 or ISO 27001 programme end-to-end

• Track record in B2B SaaS, fintech, or financial services technology

• Comfortable holding senior stakeholders accountable without managing them

• Clear written and verbal communicator, can translate technical risk for executives, board members, and customer InfoSec teams

• Familiar with cloud security on AWS

• Confident using LLMs and AI agents to accelerate evidence collection, policy maintenance, and audit work

Nice to Have

• CISSP, CISM, or equivalent certification

• Experience running InfoSec for a company integrating with digital banking platforms and financial institutions.

• Privacy expertise (CCPA, GDPR, state-level US privacy laws)

• Background managing external auditors and pen-test partners

What We Offer

• Remote-first working arrangement based in Ireland

• The chance to build the InfoSec function from the ground up

• Direct partnership with the COO, CTO, and the leadership team

• An AI-first working environment

• Competitive compensation and continuous learning benefits