Chief Information Security Officer

Hello Network!

I hope you're doing well today,

We are currently recruiting for a Chief Information Security Officer, this is a 24 month contract (overall), with initial period of 3-6 months at a time.

This position is responsible for developing, implementing, maintaining and continuously improving the Client's Information Security Management System (ISMS) in accordance with the ISO/IEC 27001:2022 standard. The ISMS Manager reports to the Chief Information Security Officer (CISO) and is his main advisor and operational sounding board.

You are responsible for:

• Achieving the objectives as defined in the ISMS policy in accordance with the ISO/IEC 27001:2022 standard.
• Coordinate and conduct risk assessments, vulnerability audits and security assessments to identify and mitigate information security risks, using the Client's ISO 27005-based ISRM methodology.
• Developing, maintaining, and continuously improving the ISMS framework, documentation, and associated policies and procedures
• Supporting the CISO in developing and implementing strategies, objectives, security roadmaps, and information security awareness programs management meetings on the security policy obtaining the necessary resources and resources for the ISMS to function properly
• Collaborate with the Information Security Manager (ISM) on security budget planning and resource allocation.
• Helping operations teams develop and maintain risk treatment plans and security controls implementations
• Supporting departments in identifying and managing information security risks
• Monitor and report on the effectiveness of risk mitigation
• Manage and monitor the implementation of security controls and corrective actions in response to audit findings or incidents
• Defining information security requirements and expectations of all relevant stakeholders.
• Build relationships with internal stakeholders and employees to ensure policies are understood and followed across the organization.
• Stay informed about emerging and evolving threats, vulnerabilities, security best practices, technologies, relevant regulations, and formulate proposals for improvements to the ISMS.

If interested, or you know someone that could be please reach out and we can arrange a time to speak?