IT Security Manager
IT Security Manager
Posted on :
23-08-2024
Employer Active
1 Vacancy
Job Alert
You will be updated with latest job alerts via emailValid email field required
Send jobs
Share
Send me jobs like this
Job Alert
You will be updated with latest job alerts via emailValid email field required
Send jobs
Job Description
Job Brief
We are looking for an experienced IT Security Manager to join our team. We are looking for a competent Security manager to organize and oversee all security operations of our company. Security personnel will be under your command while you develop and implement policies and procedures to maintain security standards. As Security Manager you will have to demonstrate excellent surveillance and emergency response skills. You will need a strong commitment to security rules and knowledge of all hazards and threats to safety. Since you will have a number of people under your responsibility you must also exhibit leadership skills. The goal is to create and preserve an environment where employees visitors and property are safe and wellprotected.
Roles & Responsibilities
Develop and implement security policies protocols and procedures
Support business teams to achieve and maintain their security and compliance posture in accordance with ISO 27001 GDPR SOC 1/2 Data Privacy etc.
Validate ongoing compliance of policies and process/procedures in support of requirements and ensure that controls are operating effectively
Prepare responses to client questionnaires and RFPs on information security compliance and data privacy related areas. Provide support and clarity to customers and users of the information and cybersecurity policy framework answering related questions and challenges as they arise
Interface and engage both management and other functions in organization on information security compliance related activities and processes
Lead the effective publication of policy materials and documents Risk Management
Present and report regularly infosec dashboard to management and stakeholders
Assist with the development of technical security risk and compliance documentation
Document and communicate status and compliance effectiveness to management on a regular basis
Conduct regular internal audits on information security
Manage external audits from customers stakeholders and regulatory agencies
Maintain and manage ISMS related documents reports and artefacts
Coordinates the issuance of access control and drive change management activities
Manage vendor and thirdparty due diligence documentation
Internal consultant for IT domain leads administrators for security infrastructure and assisting them to implement security devices configuration controls for firewalls Internet connectivity Proxies IPS and router etc.
Requirements:
Understand the organization information security requirements
Implements security standards processes and procedures and guidelines for the enterprise.
Ensures and monitors security compliance with regulator and government rules and regulations.
Coordinates with technology and business groups to assess implement and monitor ITrelated security risks/hazards.
Reviews current and proposed information systems for compliance with the organizations obligations (including legislation regulatory contractual and agreed standards/policies) and adherence to overall strategy.
Responsible for implementing Security patches Maintenance of Antivirus systems Closure of VA/PT issues as per the standards requirement Coordinate the Web Proxy Firewall SIEM and the other security devices.
Involve in all cloud initiatives understand the requirement evaluate the security posture and make sure compliance all the time.
Reports security performance against established security metrics
Ensures and meets all service level agreement requirements.
Supports the information security awareness program to ensure staff members across the organization understand the tradeoff between risk and return
Must be selfdriven and interact and work with different functions and departments of the organizations on compliance
Excellent communication skills and to independently drive other coordinators on compliance related activities
Ability to organize conduct and drive meetings and outcomes with little to no manager involvement. Must be aware of and deliver a quality stakeholder engagement experience
Experience working with Internal and External Audit teams
This role will have considerable engagement with all business units committees and other stakeholders across the company. Successful candidates will be expected to lead and deliver a range of complex activities in the fields of information security management. Looking at the bigger picture correlate the action and impact Influence control and enforce
Think long term think for the customer and think for practicality.
Reviews current and proposed information systems for compliance with the organizations obligations (including legislation regulatory contractual and agreed standards/policies) and adherence to overall strategy.
Provides specialist advice to those accountable for governance to correct compliance issues.
Information governance Desired Candidate Profile
Graduate/PG in computer science information systems management or a related discipline
Microsoft Certified Systems Engineer/Certified Network Engineer
Thorough understanding or certification on IS027000 standards
5 to 10 years of experience in running the information security office analyzing and applying information security cyber security & risk management
Strong understanding of Information Security Governance Risk and Compliance
Certification ISO 27001 CISA CISSP CISM (Anyone)
Strong knowledge in Project Management IT Security Architecture Design Prior experience with managing other security compliance like HIPAA GDPR ISO 27018 SOC1 2 ISO 27001 PCI DSS etc. is a plus
communication skills,security operations management,it security management,access control,data privacy,certified information security manager (cism),iso 27018,risk management,it,surveillance,iso,cisa,it security,service level agreement,vendor management,gdpr,information security,cissp,project management,auditing,leadership,emergency response,compliance,stakeholder engagement,risk assessment,hipaa,security operations,security metrics,cyber security,security,cisco,it security architecture design,soc 1/2,cloud security,iso 27001,policy development,pci dss
Employment Type
Full Time
Report This Job
Disclaimer: Drjobpro.com is only a platform that connects job seekers and employers. Applicants are advised to conduct their own independent research into the credentials of the prospective employer.We always make certain that our clients do not endorse any request for money payments, thus we advise against sharing any personal or bank-related information with any third party. If you suspect fraud or malpractice, please contact us via contact us page.
