Chief Information Security Officer

Chief Information Security Officer

As a Chief Information Security Officer, you will be responsible for designing and implementing robust cybersecurity solutions architecture to safeguard the organization's digital assets.

Your primary objective is to ensure the confidentiality, integrity, and availability of sensitive data. To achieve this, you must develop and maintain comprehensive security controls and protocols to prevent cyber threats.

Key Responsibilities:

• Develop and implement a robust cybersecurity framework aligned with industry best practices and regulatory requirements.
• Design and implement security measures to safeguard networks, systems, and data from cyber threats.
• Conduct risk assessments and security audits to identify vulnerabilities and recommend remediation measures.
• Integrate security measures into infrastructure design and configuration to support cybersecurity objectives.
• Implement automation and orchestration solutions to enhance cybersecurity agility and resilience.
• Develop and enforce cybersecurity policies, standards, and procedures to ensure compliance with industry regulations and internal requirements.
• Lead and/or support internal and external audits and assessments.
• Point of contact and first responder for all cybersecurity matters.
• Liaison with regulatory agencies to fulfill statutory requirements.
• Provide guidance and support to teams to address compliance gaps and improve security posture.
• Manage vendors to deliver effective cybersecurity solutions.
• Implement advanced threat detection and monitoring tools to detect and respond to security incidents in real-time.
• Develop incident response plans and procedures to mitigate the impact of security breaches and minimize downtime.
• Coordinate with internal teams and external partners to investigate security incidents and implement remediation measures.
• Provide expert advice and support to the organization on security-related issues, including phishing awareness and data protection.
• Evaluate cybersecurity products, technologies, and solutions to determine their suitability for the organization's security requirements.
• Conduct vendor assessments and due diligence to ensure the security and reliability of third-party solutions.
• Collaborate with procurement teams to negotiate contracts and agreements with security vendors.
• Lead cybersecurity projects and programs.
• Manage enterprise security solutions deployed within the organization with the support of the Cybersecurity-CoE.
• Coordinate cybersecurity tabletop exercises and awareness activities.
• Work closely with the Cybersecurity-CoE in rolling out enterprise security solutions on-time.
• Engage and build strong relationships with leaders inside and outside your core product team to collaborate effectively for a designed experience.

Requirements

• Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or related field.
• Proven experience in cybersecurity architecture, infrastructure design, and implementation.
• Strong knowledge of cybersecurity principles, standards, and best practices.
• Experience with security technologies such as PAM, IAM, firewalls, intrusion detection/prevention systems, SIEM, endpoint protection, and encryption.
• Certifications such as CISSP, CISM, CEH, or equivalent are highly desirable.
• Proficiency in network and system administration, including experience with cloud platforms (e.g. GCP, AWS, Azure).
• Familiarity with DevSecOps principles and practices.
• Project management skills.
• Excellent analytical and problem-solving skills.
• Strong communication and interpersonal abilities.
• Highly driven and keen learner.