Information Security Lead

Sustainability that means business

Who We Are

Sustainability software specialist, AMCS, is headquartered in Ireland, with offices in Europe, the USA, and Australasia. With over 1,300 highly-skilled employees across 22 countries, we specialize in delivering technology solutions to facilitate a carbon neutral future.

What We Do

Our innovative SaaS solutions increase efficiency and boost sustainability in resource-intensive industries. Over 5,000 customers across 23 countries already benefit from our Performance Sustainability software, ensuring we deliver practical solutions for improved profitability and environmental resilience across the globe.

Our People

AMCS offers team members more than just a job, but an opportunity to map out a career with a company that is growing, evolving and setting out new ways of working that are having a positive impact on the world around us. AMCS was established in Ireland and holds onto those local roots and ‘start-up’ mentality with a culture of connection. Connection to our work, our customers, our colleagues and our community that creates a working environment that fosters openness, collaboration and creativity.

Information Security Lead - This is a hybrid role requiring minimum 3 days per week onsite at our Limerick HQ

Role Overview

The Information Security Lead oversees the governance, development, and continuous improvement of the Information Security Management System (ISMS). The role is focused on ISMS governance, audit and compliance, risk management, vendor assurance, and security awareness.

Key Responsibilities

ISMS Governance & Continuous Improvement

• Manage and enhance the ISMS in line with ISO 27001, SOC 2, and PCI standards.
• Maintain policies, standards, and procedures.
• Maintain accurate, audit-ready documentation.
• Maintain the Statement of Applicability and control framework
  
  

Audit & Compliance

• Support internal and external audits (ISO 27001, SOC 2, PCI)
• Manage customer related audits and security questionnaires.
• Help track remediation of findings and non-conformities.
• Liaise with auditors and certification bodies.
  
  

Risk & Asset Management

• Perform risk and threat assessments.
• Maintain Asset and Risk registers.
• Coordinate risk treatment with business owners and IT teams.
• Assess security of new systems and technologies.
• Support AI governance framework development.
• Assess AI tools and use cases for security and compliance risks.
  
  

Vendor Risk Management

• Perform vendor security assessments against compliance standards
• Maintain vendor risk records.
  
  

Incident Response & Business Continuity

• Assist in security incident response activities & business continuity planning.
  
  

Security Awareness & Training

• Develop training materials and campaigns for targeted awareness programmes.
• Promote a strong information security culture across the business.
  
  

Experience & Education

• Degree in IT, Cyber Security, Business Informatics, Law, or equivalent.
• Experience in information security, ideally in SaaS or cloud environments.
• Practical experience with ISMS and certifications (ISO 27001, SOC 2, PCI).
• Good understanding of GDPR, EU Data Act and NIS Framework.
• Experience of undertaking ISO, SOC, PCI audits.
• Exposure to AI governance and Cloud Security.
  
  

Competencies

• Structured and detail oriented.
• High integrity and accountability.
• Strong communication skills.
• Fluent in English.