Security Lead - Cyber Security, Risk Management, Vulnerability Management, ISO, NIST, Azure, AWS, Full Time, Oslo, Norway

A large global organisation are seeking a Security Lead to oversee the security operations, ensuring the protection of sensitive data/IT infrastructure and critical business applications. The ideal candidate should have a strong background in cybersecurity, risk management and security architecture with the ability to lead a team and implement robust security measures.

This will be a 12 month fixed term contract with extensions available.

You will be required to work on-site 100% Full Time in Oslo, Norway.

Skills/Requirements:

• Lead the security team in daily operations, Incident response and threat mitigations.

• Collaborate with IT and business leadership to align the security initiatives with business goals.

• Develop and implement the security policies, Procedures.

• Manage security services like Vulnerability Management, Endpoint security, Risk management, PKI and Network security.

• Conduct regular risk assessments and drive the identifies risks for remediation.

• Ensure compliance with relevant security frameworks ISO27001, NIST and GDPR.

• Mentor and train the security team members in the best practices and new technologies.

• Define Security Roadmap/Strategy and coordinate the initiatives across the organization.

• Define and drive cloud security programs to secure resources on cloud (Azure, AWS, GCP etc.)

• Develop & maintain up to date Information Security policies, processes, and guidelines.

• Review and approve information security specifications, any exceptions/deviations to security policies submitted by internal stakeholders.

• Lead Incident response efforts including detection, analysis and remediation. Coordinate with all internal and external stakeholders during any security breaches.

• Define and conduct Security awareness trainings and programs.

• Evaluate emerging cybersecurity threats and develop effective security controls.

• Oversee Audits and ensure corrective actions are implemented for NC’s and findings.

• Establish strong governance with the team by creating presentations and reports.

• Follow and promote security best practices (from NIST, CIS etc.) within the organization.

• Achieve security goals, objectives and drive continual improvement to mature the security posture of the organization.