The information Security Manager will be responsible for the design, implementation and ongoing upkeep of Information Security Management System (ISMS). You will work under the guidance of the Global Head of Technology ensuing the ISMS is suitable and includes strong baselines for secure configuration and operations of all systems. You will be proactive in analysing and identifying risks, threats and vulnerabilities ensuing full end to end tracking of all security incidents.
Work with the Global Head of Technology on IT Security polices and Procedure.
Support global locations with the assessment, effectiveness and compliance to security polices/procedures.
Work with the different departments within the global technology team to ensure we have a consistent implementation of security standards across their Technology Teams.
Participate in the assessment and support of internal and external audits related to Information Security.
Provide assistance with client due diligence and audit requests.
Stay Current on IT Security Trends, News and analysing the impact and remediation.
Investigate Security Breaches and other cyber security incidents with full documentation.
Work on the global DR and BCP polices and procedures.
Perform periodic audits of Third parties.
Coordinate security plans with Third parties.
Train fellow employees in security awareness and procedures.
Implement and upkeep of the companies ISO and ISE certifications.
Experience with industry leading information security management frameworks such as NIST, ISO27001 and COBIT.
High level understanding of various regulatory compliance programmes, for example GDPR.
Process knowledge of the following but not limited to Firewalls, Proxy Servers, Data Loss Prevention and Anti Virus.
Ability to assess and understand penetration testing and vulnerability tests following
Working in an enterprise environment, understanding the risk concepts and principles, as a mean translating business operations and needs into quality data controls & Security.
Familiar with Public cloud services such as Azure.
6+ year working experience in IT Security of related field.
Bachelor’s Degree or relevant security experience such as; CISSP & CISM.
Candidate will be certified (or have working knowledge) in ITILv3 and/or Prince2.
Has experience of working with personnel in multiple jurisdictions.
Analytical and problem solving skills.
Attention to detail.
Team working skills.
Ability to communicate security-related concepts to a broad range of technical and non-technical staff.