Why This Job is Featured on The SaaS Jobs
In SaaS, security leadership increasingly sits at the intersection of product delivery, customer assurance, and regulatory expectations. This Information Security Lead role is notable because it is anchored in operating a formal ISMS and supporting widely recognised frameworks such as ISO 27001 and SOC 2, which are often decisive in enterprise SaaS procurement and renewals. The remit also touches vendor assurance and customer security questionnaires, signalling a security function that is directly connected to go to market realities.
For a long-term SaaS career, the role builds durable expertise in running audit ready programs, maintaining control frameworks, and translating risk into actionable governance. Experience spanning risk registers, third party reviews, and incident response support tends to transfer well across cloud software organisations, particularly those serving regulated or risk sensitive industries. Exposure to AI governance considerations adds a forward looking dimension that is increasingly relevant in modern SaaS environments.
This position suits a security professional who prefers structured work, evidence based decision making, and cross functional coordination with IT and business owners. It will appeal to someone comfortable being accountable for documentation quality and follow through on remediation, while also communicating clearly with auditors and internal stakeholders in a hybrid, onsite anchored setup.
The section above is editorial commentary from The SaaS Jobs, provided to help SaaS professionals understand the role in a broader industry context.
Job Description
Sustainability that means business
Who we are:
Sustainability software specialist, AMCS, is headquartered in Ireland, with offices in Europe, the USA, and Australasia. With over 1,300 highly-skilled employees across 22 countries, we specialize in delivering technology solutions to facilitate a carbon neutral future.
What we do:
Our innovative SaaS solutions increase efficiency and boost sustainability in resource-intensive industries. Over 5,000 customers across 23 countries already benefit from our Performance Sustainability software, ensuring we deliver practical solutions for improved profitability and environmental resilience across the globe.
Our people:
AMCS offers team members more than just a job, but an opportunity to map out a career with a company that is growing, evolving and setting out new ways of working that are having a positive impact on the world around us. AMCS was established in Ireland and holds onto those local roots and ‘start-up’ mentality with a culture of connection. Connection to our work, our customers, our colleagues and our community that creates a working environment that fosters openness, collaboration and creativity.
Information Security Lead - This is a hybrid role requiring minimum 3 days per week onsite at our Limerick HQ
Role Overview
The Information Security Lead oversees the governance, development, and continuous improvement of the Information Security Management System (ISMS). The role is focused on ISMS governance, audit and compliance, risk management, vendor assurance, and security awareness.
Key Responsibilities
ISMS Governance & Continuous Improvement
Manage and enhance the ISMS in line with ISO 27001, SOC 2, and PCI standards.
Maintain policies, standards, and procedures.
Maintain accurate, audit-ready documentation.
Maintain the Statement of Applicability and control framework
Audit & Compliance
Support internal and external audits (ISO 27001, SOC 2, PCI)
Manage customer related audits and security questionnaires.
Help track remediation of findings and non-conformities.
Liaise with auditors and certification bodies.
Risk & Asset Management
Perform risk and threat assessments.
Maintain Asset and Risk registers.
Coordinate risk treatment with business owners and IT teams.
Assess security of new systems and technologies.
Support AI governance framework development.
Assess AI tools and use cases for security and compliance risks.
Vendor Risk Management
Incident Response & Business Continuity
Security Awareness & Training
Experience & Education
Degree in IT, Cyber Security, Business Informatics, Law, or equivalent.
Experience in information security, ideally in SaaS or cloud environments.
Practical experience with ISMS and certifications (ISO 27001, SOC 2, PCI).
Good understanding of GDPR, EU Data Act and NIS Framework.
Experience of undertaking ISO, SOC, PCI audits.
Exposure to AI governance and Cloud Security.
Competencies
Structured and detail oriented.
High integrity and accountability.
Strong communication skills.
Fluent in English.
