Head of Information Security

The Head of Information Security is responsible for establishing and maintaining an organization's information security program. They develop and implement security policies, procedures, and controls to protect the confidentiality, integrity, and availability of information systems and data. The Head of Information Security also leads incident response efforts and provides guidance and training to staff on security best practices.

Responsibilities

• Develop and implement an organization-wide information security strategy, policies, and procedures.
• Identify and assess potential risks and vulnerabilities in information systems and infrastructure.
• Establish security controls and measures to protect information assets from unauthorized access, use, disclosure, alteration, or destruction.
• Conduct periodic security audits and risk assessments to ensure compliance with industry standards and regulations.
• Lead incident response efforts and investigations into security breaches or incidents.
• Collaborate with IT teams in the design, implementation, and maintenance of secure information systems and networks.
• Monitor security alerts and vulnerabilities, and coordinate patch management and security updates.
• Conduct security awareness training and education programs to promote a security-conscious culture among staff members.
• Stay updated with the latest trends and advancements in information security to drive continuous improvement and innovation.
• Liaise with internal and external stakeholders, including auditors and regulatory bodies, on information security matters.

• Bachelor's degree in computer science, information technology, or a related field.
• Professional certifications in information security, such as CISSP, CISM, or CRISC.
• Proven experience in information security management or a similar role.
• In-depth knowledge of information security principles, standards, and best practices.
• Familiarity with industry regulations and compliance requirements.
• Strong understanding of network architecture and security technologies.
• Excellent analytical and problem-solving skills.
• Strong communication and leadership abilities.
• Ability to effectively manage multiple projects and priorities.
• Strong ethical and professional conduct.

• Bachelor's degree in computer science, information technology, or a related field.
• Professional certifications in information security, such as CISSP, CISM, or CRISC.
• Proven experience in information security management or a similar role.
• In-depth knowledge of information security principles, standards, and best practices.
• Familiarity with industry regulations and compliance requirements.
• Strong understanding of network architecture and security technologies.
• Excellent analytical and problem-solving skills.
• Strong communication and leadership abilities.
• Ability to effectively manage multiple projects and priorities.
• Strong ethical and professional conduct.