Xsolla is seeking a Director, Information Protection Management to design, implement, and spearhead the strategy that secures the organization’s most critical data assets. This global strategic leadership role builds a resilient data security ecosystem spanning data loss prevention, encryption, and data assurance, serving as a bridge between technology, security, and business velocity.
What You'll Do
- Define and execute the roadmap for the Information Protection program, aligning security initiatives with business objectives and regulatory requirements.
- Author, collaborate, and maintain policies regarding data security, data classification, handling, retention, and destruction.
- Lead the effort to discover, classify, and tag unstructured and structured data across on-premise, cloud, and third-party environments.
- Define and enforce enterprise standards for data encryption (at-rest, in-transit, and in-use) and Key Management (KMS/HSM).
- Oversee the implementation of advanced data security techniques, including tokenization and data masking controls.
- Partner with Data Strategy team to implement database activity monitoring (DAM) and ensure robust access controls for structured data repositories.
- Lead the deployment of Data Security Posture Management (DSPM) tools to automatically discover shadow data, identify misconfigurations, and map data lineage.
- Oversee the deployment and tuning of Data Loss Prevention (DLP) technologies and manage the workflow for incident triage and investigation.
- Collaborate with HR, Legal, and Compliance to establish an Insider Risk program.
- Partner with Cloud Architecture teams to ensure information protection standards are applied to IaaS/PaaS/SaaS environments.
- Develop executive-level dashboards that demonstrate the effectiveness of the Information Protection program.
- Serve as the primary point of contact for internal and external audits regarding data privacy and protection controls.
- Assist in evaluating the data security posture of third-party vendors and partners.
What We're Looking For
- 10+ years of experience in Information Security or Risk Management.
- At least 4 years in a leadership role.
- Bachelor’s degree in Computer Science, Information Systems, Business Administration, or a related field or equivalent and relevant experience and certifications.
- Deep understanding of Data Loss Prevention (DLP) tools and Data Security, Data Governance, and Data Classification methodologies.
- Strong familiarity with global privacy laws and frameworks (NIST CSF, ISO 27001, GDPR, CCPA, CSL/MLPS/DSL/PIPL, EO14117).
Technical Stack
- Microsoft Purview
- Netskope
- AWS S3
- Azure Blob Storage
- Microsoft 365
- Salesforce
- SQL
- NoSQL
- Data Lakes
Team & Environment
You will lead a global team for Data Loss Prevention (DLP) and Insider Risk Management and serve as a core member within the Data Governance and Information Governance Committees.
Benefits & Compensation
- Medical, Dental, and Vision insurance
- 401(k)
- FSA/HSA
- Life Insurance
- Paid Time Off
- Wellness programs
- Annual bonus plan
- Discretionary equity awards
- Eligibility for Employee Stock Purchase Plan
Compensation range is $170,400.00 - $230,400.00 annually plus equity. All employees are eligible for discretionary equity awards.
Work Mode
This is a global role.
We are proud to be an equal opportunity employer. BeOne does not discriminate on the basis of race, religion, color, sex, gender identity, sexual orientation, age, disability, national origin, veteran status or any other basis covered by appropriate law.
