Chief Information Security Officer

General Description:

We are looking for a junior to mid-level Chief Information Security Officer (CISO) to join our team. The suitable candidate will be responsible for developing and implementing information security procedures, policy frameworks, and possessing a high level of information security knowledge.

Responsibilities:

Develop and manage the organization's information security policies, procedures, and processes (GRC).

Lead cyber risk/threat assessments and develop response plans.

Build and maintain cyber risk management programs.

Lead compliance processes with regulations such as ISO 27001, SOX, ITGC, privacy protection, etc.

Lead the development of technological controls (tools) to address cyber threats.

Develop business continuity plans (BCP) in response to cyber threats.

Manage employee awareness of cyber security.

Lead the implementation of secure development processes (SSDLC).

Lead vulnerability assessment processes.

Manage the response to cyber incidents with relevant stakeholders and security companies, as well as internal and external company clients.

Requirements:

Proven experience in a similar role.

In-depth knowledge of relevant regulations and standards (such as ISO 27001, SOX).

• Excellent communication skills and ability to work in a teams