Candidates Testimonials – How C.S.S Got Me Hired
Our Services
Free Trainings & Events
IT & Security Lead Job Cadmus
IT Jobs. Cadmus Jobs
Requirements
We are looking for a highly experienced and pragmatic IT & Security Lead to own our entire internal technology, security, and compliance landscape. This is a senior individual contributor role, reporting directly to the Chief Product Officer. You will be responsible for building and scaling our security and IT functions from the ground up.
You are a great fit if you demonstrate:
- Deep expertise in achieving and maintaining key security certifications like ISO 27001 and Cyber Essentials Plus.
- A proven track record of managing vulnerability assessments, penetration tests, and remediation cycles.
- Significant experience in fast-paced startup or small-scale companies, understanding how to make smart, risk-based tradeoffs rather than “gold-plated” systems.
- A pragmatic problem-solver responsible for driving organisation-wide compliance, creating sensible policies, and managing exceptions smartly and quickly.
- A massive plus would be technical skills in Python scripting or full-stack development, enabling process automation and collaboration with the engineering team.
- The ability to balance strategic GRC (Governance, Risk, Compliance) with hands-on IT operations and SecOps.
You Will:
- Strategy & Governance: Develop, implement, and own the company-wide security, compliance, and IT roadmap. Stay up to date with evolving threats, vulnerabilities, and regulatory requirements.
- Certification & Audits: Lead the end-to-end process for achieving and maintaining critical certifications (e.g., ISO 27001, Cyber Essentials Plus), interfacing directly with auditors. Lead internal and external audits, and manage third-party security assessments.
- Customer Trust & Vendor Management: Respond to and complete customer security questionnaires and due diligence requests. Provide strategic guidance and oversight to vendors, ensuring adherence to agreed-upon SLAs and KPIs.
- Policy & Operations: Define, document, and enforce security and IT policies across the organization. You will establish and manage a pragmatic process for handling exceptions.
- Security Operations (SecOps): Manage and coordinate all vulnerability assessments and penetration testing, overseeing the timely remediation of findings. Implement and manage security tooling for threat detection, incident response, and data protection.
- Incident Response: Act as the primary incident commander for any security events or breaches, managing the full lifecycle from detection to post-mortem. Ensure excellent communication to stakeholders, providing timely and accurate updates during incidents.
- IT Operations: Oversee all internal IT functions, including helpdesk operations, hardware/software provisioning (macOS/Windows), asset management, and MDM solutions.
- Identity & Access Management (IAM): Administer core SaaS platforms (e.g., Google Workspace/Microsoft 365) and own the IAM strategy, ensuring secure and scalable processes for onboarding, offboarding, and access control.
- Collaboration: Partner with the Engineering team to embed security best practices into the SDLC (DevSecOps) and advise on product security.
How to Apply
🚨 Before You Apply for This Job…Need Help With Your CV?
This job will attract 1000+ applicants.
Many qualified professionals miss out on getting shortlisted and interviews — not because they lack experience, but because their CV doesn’t clearly show how they fit this specific job.
🎯 Want to get an interview fast? Customize your CV specifically for this job.
Using the same CV for every application will not get you interviews.
Email your CV today to our Client Service Manager, Rose, using cvwriting@corporatestaffing.co.ke
Subject: CV Review & Upgrade.
Rose and our recruiters will review your CV and show you exactly how to improve it for the job you are targeting.
Using an A.I-generated CV but not getting interviews? Click here & get it reviewed by our recruiters.

