Our portfolio companies are always looking for great people. Apply to the opportunities below or send us your profile.

Head of Information Security at Tessian
London, GB

We believe technology should secure the digital interactions of employees without compromising user experience or productivity. That’s why we’re building the world’s first Human Layer Security platform. 

We’re a team of mathematicians, data scientists & engineers building breakthrough machine learning and natural language technologies to analyse, understand & protect enterprise email networks.

Tessian is backed by leading technology investors Sequoia Capital and Accel who have helped build many industry defining companies including Stripe, Spotify, Crowdstrike and Docker.

We'd love to hear from you.

Information Security at Tessian 

We're looking for a hands-on Head of Information Security to ensure we continue to grow increasingly secure, and consistently embed a security-first culture in all our Tessians. We believe security should work for everyone, with teams being empowered, enabled, and sufficiently educated to make – and want to make - good security decisions. Balancing the nurture of this practice, with the accountability of being our InfoSec expert-in-residence, is at the heart of this role. We believe that Information Security crosses many functions, from Engineering, to IT, to Legal, and whilst these can tell us what we can do – theoretically, technically, legally – we’ll be looking to you to advise us what we should do – and how. 

Reporting to our CFO, you’ll work with stakeholders at all levels and have oversight of all our Tessian-wide information security practices. We don’t have an InfoSec team, so you’ll be involved in InfoSec strategy right through to hands-on implementation, and you’ll see your impact in every secure practice and every day that passes by, safe, enabled & secure.

You'll be involved in:

Working closely with our Data Science, Engineering, Legal and Commercial Teams to allow us to deliver the best possible product whilst meeting legal, regulatory, and customer expectations

Scaling Tessian’s InfoSec practices, creating self-serve frameworks to enable the business as much as possible, e.g. for application and process approvals

Completing InfoSec sections of client due diligence questionnaires

Handling incidents that may arise, & ensuring our disaster recovery strategy is tested & fit for purpose

Auditing our internal information security Implementing, improving & running forwards procedures to ensure we maintain compliance with ISO27001 and GDPR

Working closely with, and training, Tessians across two continents, to ensure that information security is built into everything we do & to assure the application of information security principles into our projects

Potentially taking on some or all Data Protection Officer duties

Running the Monthly Information Security meeting that reports to the Board

Designing controls to mitigate information and data security risks within the wider business

Ensuring risks are identified and assessed, making appropriate recommendations & seeing projects and improvements all the way through to implementation

Identifying vulnerabilities in our practices and establishing improvements

Ensuring the confidentiality, integrity and availability of Tessian’s operations

We'd love to meet someone who:

Has a track record in a senior InfoSec role

Ideally has experience in a technical background such as IT or software engineering, or experience working in hi-tech environments

Can work in a multi-OS (MacOS, Windows, Linux) environmentIs willing to get stuck in at all levels, from hands-on implementation through to strategy

Is up for a debate with our most senior stakeholders

Has an inquisitive mind, and doesn’t take things at face valueIs comfortable with an ever-changing landscape

Believes the job is never finished but..

Doesn’t hold back from shipping something better, fast, & often

Is solution-oriented, and can chart a path through muddled waters

Is dedicated to security, but knows ‘process’ isn’t always the answer

Would rather get an 80% solution to improve security implemented a day, than a 100% solution in weeks

Stay in touch with Balderton

Sign up for our newsletter to stay up to date on news from Balderton, and our portfolio.