Information Technology Security Manager

About Us: We are a dynamic, multi-entity insurance group, currently evolving and optimizing our organizational synergies. As we continue to grow, we are looking for a dedicated IT Security Manager to lead and strengthen our information security governance and operational processes.

Position Overview: As the IT Security Manager, you will oversee the governance of the company’s system and information security while coordinating the technical operations that safeguard our IT infrastructure. You will lead a growing team, including a SecOps Engineer and a Security Officer (work-study), and collaborate with the CIO’s leadership team.

Key Responsibilities:

Governance and Strategy:

• Lead risk analysis initiatives and provide strategic direction on information security matters across the group.
• Define, propose, and execute the Information Security Strategy (ISS) and roadmap tailored to the needs of our diverse entities.
• Manage and respond to partner audits and drive internal security audits to ensure compliance and identify areas for improvement.
• Collaborate with company management to ensure alignment between IS security and organizational objectives.
• Define, deploy, and oversee the Information Security Management System (ISMS) within the IT department.
• Spearhead awareness and training programs to cultivate a culture of IT security across the organization.
• Monitor regulatory developments and ensure the company remains compliant with relevant laws and standards.
• Establish key performance indicators (KPIs) to measure the effectiveness of IS security initiatives.
• Actively participate in business continuity planning (BCP) and disaster recovery projects.

Technical Leadership:

• Functionally lead the SecOps team, fostering collaboration and ensuring effective incident management.
• Build, manage, and track the IT security budget to ensure efficient allocation of resources.
• Oversee IS security projects, ensuring they are executed according to the approved plan and timeline.
• Lead incident response efforts, including the development and testing of incident response plans (PCI/PRI).
• Manage relationships with service providers (including SOCs) and security vendors, ensuring alignment with security objectives.
• Provide leadership in IT security testing, vulnerability management, and continuous improvement.

Your Profile:

• A higher education degree in computer science or a related field.
• Proven experience in IT security, risk management, and/or as a CISO, with a strong background in project management.
• Expertise in IT quality processes, ITIL, and continuous improvement methodologies.
• Strong communication skills with the ability to engage and influence both technical teams and senior management.
• A passion for driving IT security awareness across all levels of the organization, with the ability to simplify complex concepts.
• A collaborative mindset with the ability to inspire, lead, and develop a high-performing team.