Job Title
Cybersecurity Leadership Role
Pursue a senior position in cybersecurity and take on a leadership role, ensuring the protection of critical infrastructure.
Main Responsibilities
* Provide expert guidance on security projects to guarantee timely delivery and effective maintenance of security operations.
* Respond promptly to cyber incidents and execute remediations according to service level agreements.
Cyber Technical Expertise
* Serve as the technical point of escalation for all security-related controls and concepts.
* Lead the implementation of cybersecurity best practices within projects and advise key stakeholders on security architecture best practices.
* Review and implement security policy and configurations, ensuring compliance with frameworks such as CIS, SIEM, Palo Alto Firewalls, and more.
Cyber Governance & Operations
* Conduct risk assessments to identify and mitigate internal and external security threats.
* Oversee outsourced security operations to ensure service level agreements and key performance indicators are met.
* Implement cyber hardening techniques and continuously monitor security measures for IT and OT systems.
* Evaluate all security tools for configuration according to best practices and manage their lifecycle.
Incident, Problem & Change Management
* Lead rapid response and investigation into security incidents to minimize impact.
* Manage changes to security configurations, policies, and procedures to ensure minimal disruption to ongoing operations and project lifecycles.
Cyber Supply Chain Risk & Vendor Management
* Manage third-party vendors providing security services or solutions to ensure compliance with agreed security standards.
* Monitor and manage cybersecurity risks associated with external vendors throughout their lifecycle.
Security & Compliance
* Develop and implement a NIST-based cybersecurity strategy aligned with organizational goals.
* Conduct continuous monitoring of security events and respond effectively to emerging threats.
* Oversee security and compliance audits to ensure internal policies and external regulations are met.
Information Security
* Establish and enforce information security policies and standards governing data confidentiality, integrity, and availability.
* Implement data classification and security protocols across the business.
* Manage security of on-premises and cloud environments (Azure).
* Ensure proper implementation of network segmentation, VPN security, and Zero Trust models.
* Maintain and refine cloud security policies and standards for Azure.
Disaster Recovery & Business Continuity
* Integrate security measures into business continuity and disaster recovery plans.
* Lead testing of the Business Continuity Plan (BCP) and Disaster Recovery (DR) strategies to ensure business functions are protected against cyber incidents.
* Drive improvement of cybersecurity processes and procedures.
* Share knowledge, best practices, and compliance standards across the organization.
* Continuously improve security processes to align with changing regulations and industry best practices.
To excel in this role, you will have:
* 10-15 years of experience in cybersecurity or information security roles, including network security and system security.
* Significant experience in cybersecurity governance, risk management, and compliance.
* Proven expertise in developing and implementing security control assurance programs and supply chain risk assessment frameworks.
* Certifications: CISSP, CISM, or other security certifications are highly desirable.
* Solid understanding of security management frameworks such as ISO27001, NIST, ASD, and other related security standards.
* Strong understanding of networking protocols and system security protocols.
* Familiarity with cloud environments (specifically Azure) and network security (e.g., VPN, Zero Trust).