Job Details

Cyber Security Lead

IRIS Software Group - North America
Walton, New York, United States

The Role

As we continue our expansion across North America, we're looking for a Cyber security Specialist to be primarily focused on technology Due Diligence, onboarding security evaluation and remediation of acquired companies in our portfolio.

IRIS Software Group are one of the largest privately held software companies in the UK and this role is crucial in the next stage of our growth as you will be a key player in helping establish security operations in North America


  • Keep up to date with the latest security and technology developments
  • Research/evaluate emerging cyber security threats and ways to manage them, especially concerning merges and acquisitions
  • Use advanced analytic tools to determine emerging threat patterns and vulnerabilities
  • Lead Due diligence meetings focused on internal technology and security
  • Create respective due diligence document
  • Upon acquisition identify potential weaknesses and implement measures to mitigate the risks in line with IRIS security policies
  • Identify and document Cyber Security and Operational Risks for North America and work on remediation plans with the owners.
  • Work closely with a project manager to keep the tasks progressing and up to date
  • Contribute to the information security risk register
  • Assist with the creation, maintenance and delivery of cyber security awareness training for colleagues
  • Document lessons learned from each acquisition and improve the process for the future
  • Provide Incident Management within the US time Zone

Key Relationships

  • Group IT, Heads of Engineering, project manager
  • IT team from the acquired company
  • IRIS Deal team

Experience (Training in specific tools can be arranged for the right candidate)

  • Bachelor's degree or qualification in a security-related discipline (CISSP, GIAC, CISA, CISM) or 5 years related work experience in related information security fields with a proven track record.
  • Solid analytical skills, including the ability to extract and use data to identify and solve ambiguous problems.
  • Familiarity with some of these Global/UK standards e.g., NIST, ISO 27001, ISO 27002, PCIDSS, GDPR, SOC
  • Knowledge of data protection mechanisms, including encryption, tokenization, masking, DLP and key management.

Preferable experience with these systems and processes

  • Kaspersky Security Centre
  • 365 Security Centre
  • Azure
  • AWS
  • System Hardening
  • Patch management
  • Sumo Logic, Carbon black, Esentire portal, Lan Sweeper and Nessus IO

Personal Competencies

  • An organized, methodical approach is needed
  • Ability to lead conference calls with target companies, structure conversation and summarize outputs
  • Ability to work in a fast-paced environment and adapt to change
  • Self Starter must be able to manage their time to achieve tasks set
  • Needs to be authoritative, but if there is a gap in knowledge or not sure about something then they need to say rather than try and fudge.
  • Ability to prioritize, track progress and communicate status and risks to management
  • Needs to be able to drive conclusions, document processes and incidents

Please note:

We occasionally close vacancies early in the event that we receive a high volume of applications. Therefore we recommend you apply as soon as possible.

Send application

Mail this job to me so I can apply later

Apply With CV

You are not logged in. If you have an account, log in to your account. If you do not have an account, why not sign up? It only takes a minute!

latest videos

Upcoming Events