Director of Information Security

Job Description:
Director of Information Security

Jonas Software -CORA Loyalty

We are seeking a seasoned cybersecurity leader responsible for developing, enforcing, and continuously improving the organization’s global cybersecurity policies, compliance programs, and risk management practices. This role requires strong strategic thinking, technical depth, and the ability to collaborate across worldwide business units to enhance cyber maturity, awareness, and resilience.

We seek someone who can balance compliance requirements with business objectives, drive continuous improvement in security practices, and embed a culture of proactive risk management. The Director of Information Security will act as a strategic partner to global leadership, ensuring governance, assurance, and technical security controls align with enterprise goals and regulatory standards across all regions.

Job Responsibilities- Maintain and evolve global cybersecurity policies and compliance frameworks, ensuring alignment with legislation, regulatory requirements, and standards such as ISO/IEC 27001, NIST CSF, and SOC 2.- Drive initiatives to improve organizational cyber maturity and awareness worldwide, including training, communications, and employee engagement.- Lead SOC 2 readiness and other international compliance activities, including evidence preparation, audit facilitation, and remediation.- Collaborate with IT, DevSecOps, Risk, and Business Continuity teams across global operations to assess and reduce technical cybersecurity risks.- Support the implementation, monitoring, and continuous improvement of global technical security controls that enforce policies and reduce vulnerabilities.- Prepare and deliver governance and assurance reports to senior stakeholders and executives across regions on compliance, risks, and remediation progress.- Assist with vulnerability management, incident response planning, and business continuity initiatives across global operations.- Partner with international business units to embed security best practices into day-to-day operations and new business initiatives.

Background and Experience- 15+ years of progressive experience in cybersecurity, compliance, and risk management in global organizations.- Proven success in designing and leading compliance-driven cybersecurity programs that support enterprise-wide business objectives across multiple geographies.- Experience leading cross-functional and globally distributed teams, fostering a culture of ownership, proactive risk management, and continuous improvement.- Deep knowledge of international industry standards and regulatory frameworks: NIST CSF, ISO/IEC 27001, GDPR, CIS, SOC 2, and ADGM.- Hands-on expertise translating global compliance requirements into effective policies, technical controls, and assurance processes.

Skills and Abilities- Strong background in global governance frameworks and enterprise-wide risk assessments, with proven ability to prepare executive-level reports for boards, auditors, and senior stakeholders worldwide.- Skilled at translating complex regulatory and technical concepts into clear, actionable insights across geographies.- Excellent problem-solving skills with the ability to identify compliance gaps and drive effective remediation strategies.- Proficiency with security frameworks and standards (NIST, CIS, OWASP, SOC 2) across global operations.- Strong written and verbal communication skills, with demonstrated ability to produce clear, audit-ready documentation for both local and international regulatory contexts.

About CORA Loyalty

CORA Loyalty provides, in one integrated company, the software solutions and related services that brands need to maximize value from their Loyalty programs. The hub of CORA Loyalty, RewardOps, enables global financial institutions, travel providers, and coalition programs to connect their loyalty program members to a global e-commerce marketplace, where they can choose rewards from millions of products offered by the brands they love. For enterprise customers, Carlson Marketing Solutions provides an institutional-grade loyalty program management and points bank system. Channel loyalty programs are served by the Points at Work platform, a turnkey platform for sales and employee incentive plan use cases. Finally, the digital marketing and data sciences services of Carlson Marketing and the global supply chain management capabilities of RewardOps ensure that CORA Loyalty customers derive maximum value from their loyalty program investments.

LI-VL1

Business Unit:
RewardOps

Scheduled Weekly Hours:
37.5

Number of Openings Available:
1

Worker Type:
Regular

More About Jonas Software:
Jonas Software is the leading provider of enterprise management software solutions to the Country and Golf Clubs, Foodservice, Construction, Fitness & Sports, Attractions, Salon & Spa, Education, Radiology/Laboratory Information Systems, and Product Licensing industries. Within these vertical markets,