Captavio Technologies Limited

www.captavio.com

1 Job

8 Employees

About the Company

Headquartered in London, Captavio Technologies Limited is a Cyber Security Solutions company. With our subject matter expertise and years of experience, we have successfully expanded our service offerings into GRC and SecDevOps. We help our clients plan, execute, and monitor programs that are aligned with their business goals and long-term objectives.

The founders at Captavio have a cumulative experience of over 60 years in Information Security, Cyber Risk, Secure Software Development, IT Programme Management, Digital Transformation, and Marketing. They have worked with global conglomerates like Hewlett Packard, Nokia, Vodafone, JP Morgan, Schlumberger, Chevron, Equinor, and ConocoPhillips among others. Together they bring a wealth of industry experience, strong insight of corporate governance, and the exposure to working in complex, diverse, and challenging environments internationally.

Listed Jobs

Company Name: Captavio Technologies Limited
Job Title: Information Security and Compliance Lead
Job Description: Job Title: Information Security and Compliance Lead Role Summary: Lead and execute information security and compliance functions across multi‑jurisdictional client engagements. Drive governance, risk management, data protection, and ISO certification initiatives for UK, EU, and US projects. Expectations: - Deliver full‑cycle security and compliance programs aligned with regulatory and industry frameworks. - Provide authoritative guidance on data protection, risk assessment, and audit response. - Champion continuous improvement and trend awareness in privacy and cybersecurity. Key Responsibilities: - Maintain compliance with security controls and governance frameworks (ISO 27001, NIST, SOC 2). - Execute GDPR, HIPAA, and US data protection requirements using platforms such as Vanta and OneTrust. - Develop, implement, and disseminate compliance policies and procedures. - Track vulnerability management, penetration testing, and remedial actions through online platforms. - Oversee vendor and change‑management compliance, represent cybersecurity interests. - Respond to internal and external audit findings and monitor remediation progress. - Conduct risk assessments, update risk profiles, and report findings. - Manage the security and compliance knowledge base and intelligence repository. - Educate client and internal teams on governance, policies, and best practices. - Keep current on privacy legislation, emerging threats, and industry trends via research and events. - Design and implement Data Protection Impact Assessments (DPIAs). - Draft privacy policies, notices, and data mapping activities. - Advise on data protection, privacy issues, and risk mitigation. - Lead ISO‑driven certifications for distributed organizations. Required Skills: - 5+ years in information security and data privacy roles. - Deep knowledge of cloud platforms (Azure, AWS, GCP). - Proficient in automation, AI‑driven compliance, audit, and risk tooling. - Understanding of information security threat landscape and standards. - Hands‑on experience with network security, server management, macOS, and Windows systems. - Practical expertise in DSAR processing and privacy rights management. - Strong communication, stakeholder management, and training ability. Required Education & Certifications: - Bachelor’s degree in Computer Science, Information Security, or related field. - Relevant security and data protection certifications: CISSP, CISA, CISM, ISO 27001 Lead Implementer (or equivalent).