Cybersecurity Manager

**Key Responsibilities**:

- Developing, executing, and maintaining cybersecurity management framework and related policies within the organizations. This includes conducting continuous assessment of cybersecurity practices and policies to improve the security posture of the company.
- Lead in compliance reviews, certifications and accreditations if necessary (e.g. ISO27001, NIST, GDPR, Customers compliance verification, etc).
- Lead in IT audit planning, coordination of information requests and compilation of reports.
- Provide leadership and expertise for cybersecurity to safeguard and protect sensitive data and enhance the overall security posture.
- Manage multiple projects with broad scope, ambiguity, and high degree of difficulty
- Conduct regular risk assessments and audits to evaluate the effectiveness of cybersecurity controls, identify gaps, and develop strategies to remediate risks.
- Foster a culture of cybersecurity awareness and responsibility through the development and delivery of training programs for employees, raising their understanding of security risks, policies, and best practices.
- Collaborate closely with cross-functional teams, including GIT, legal, compliance, and executive management, to integrate cybersecurity into business processes and initiatives, driving a holistic and risk-based approach.
- Act as the primary point of contact for external audits, regulatory inspections, and client inquiries related to cybersecurity and compliance, ensuring effective communication and timely resolution of any issues.
- Define and track key performance indicators (KPIs) and metrics to measure the effectiveness of the GRC program, providing regular reports to senior management, and driving continuous improvement.
- Proven track record (10 years) in a leadership role as a Cybersecurity GRC Manager or similar position, preferably within a semi-conductor or high pace environment, with experience managing GRC programs at a global level.
- Bachelor’s degree relevant to Information Technology, Computer Science/Engineering (or equivalent).
- Deep domain knowledge, ideally with experience with global exposure and strong understanding knowledge of cloud computing.
- Track record of delivering quality solutions as a technical leader, program and project management skill.
- Security certifications such as CISSP, CISA or CISM.
- Project management certification such as PMP.
- Technical background, at least 10 years of technology-related experience with a specific focus on the relevant security domain.

**Technical Skills & Knowledge**:

- Strong Technical knowledge on cloud computing, security solution.
- Deep understanding of cybersecurity frameworks, standards, and best practices, including but not limited to NIST Cybersecurity Framework, ISO 27001, CIS Controls, and GDPR.
- Demonstrated experience in risk assessment methodologies, incident response, and business continuity planning
- Monitoring and reporting on compliance with security and data protection policies, as well as the enforcement of policies.
- Excellent leadership skills with the ability to inspire and motivate a team, foster collaboration, and drive results.
- Strong communication and interpersonal skills, capable of effectively engaging with stakeholders at all levels of the organization.
- Exceptional problem-solving and analytical abilities, coupled with a strategic mindset.

**Generic Skills and competency**:

- Communications - Good spoken and written skills in English.
- Critical thinking
- Problem Management
- Project Management
- Investigative mind
- Analytical
- Learning oriented