The position will be responsible for the creation and maintenance of enterprise-wide information security strategies. This position will oversee the creation and maintenance of information security policy, procedures, leads on-going security risk assessments and is responsible for the creation and roll-out of security awareness and training programs
Establish annual and long-range security and compliance goals.
Define security strategies, metrics, reporting mechanisms, and program services; and create road-map for continual program improvements.
Manage the IT side of the following programs: PCI DSS, and ISO 27001.
Provide guidance on information security policies, procedures, controls, risk management, and compliance.
Establish appropriate operations to ensure that proper protections are in place.
Encourage employee contribution to security practices across the organization.
Respond to changes in the regulatory environment
Holds a Bachelor’s degree in Information Systems or has equivalent work experience
years of hands-on experience within information security. Network security and vulnerability+2 management are helpful.
Understands concepts of controls and compliance.
Preferred experience working with disaster recovery and business continuity processes.
Proven ability to represent and speak on behalf of information security and technology teams while working with clients, auditors, and regulatory examiners.
Possess the expertise to determine when to engage subject matter experts and the skill to prepare them for meetings with auditors or examiners.
Professional certification preferred (CISSP, CISA, CISM)
Excellent interpersonal skills to work with varied constituents.
Excellent verbal and written communication skills.
The ability to drive results without direct authority.
Excellent time management skills. The ability to prioritize and multi-task.
How To Apply
Send your CV to email@example.com
لتقدم للوظيفة أنتهت صلاحية الاعلان