Information Security Officer

your Mission

Governance and Strategy

• Develop a strategic vision for information security, aligned with the company’s priorities.
• Establish and update security policies and procedures covering infrastructure, data, identity management, filtering, and solutions.
• Provide strategic guidance to improve the overall security posture.

Risk Management and Compliance

• Identify, evaluate, and mitigate risks related to information security by domain.
• Oversee compliance with applicable regulations and internal policies.
• Conduct regular assessments (penetration tests, phishing simulations, audits). Collaborate with various departments and partners to integrate security into all projects. Lead cross-functional teams to achieve security objectives.

Domain-Specific Approach

• Infrastructure: Secure networks, firewalls, routers, and hybrid environments.
• Data: Ensure the protection of sensitive data through robust controls and reliable backups.
• Identity and Access Management: Implement IAM systems, ensuring proper authentication and authorization processes.
• Filtering and Threat Prevention: Deploy and manage email filtering systems, anti-phishing tools, and web filtering technologies.
• Solutions: Integrate security into the design and development of applications.
• Operations: Ensure business continuity and plan for disaster recovery.

Innovation and Training

• Design awareness programs tailored to the organization’s diverse audiences.
• Train employees in best practices, including phishing identification and secure software usage.
• Propose and deploy innovative technologies to enhance security. Conduct technology reviews to ensure effectiveness.

your Profile

• Degree in computer science or related field; mandatory professional certifications (CISM, CISSP) with demonstrated experience in several information security and compliance related disciplines to include Information Security, Business continuity/resumption planning, Disaster recovery planning and testing, IT service management, Risk analysis, Auditing
• Experience installing, configuring, and maintaining firewall. Network Routers. Mail Filtering, antispam, anti-phishing. Knowledge and experience with networking concepts, protocols, services and in setup, maintenance, security of Windows operating systems. Demonstrates skill in technical problem determination and analyzing system specifications. Knowledge and experience in setup, maintenance, and security of Unix operating systems a plus.
• Ability to educate a non-technical audience about various security measures. Excellent written and oral business communication skills. Organizational, analytical, and troubleshooting skills. Demonstrated project management skills/ experience.