Head of Infrastructure Security

Job Summary:

The Head of Infrastructure Security is responsible for developing, implementing, and maintaining robust security measures to protect the organization's IT infrastructure, networks, and systems from internal and external threats. This role requires a seasoned leader with a deep understanding of cybersecurity principles, cloud and on-premises infrastructure, and risk management. The individual will work closely with cross-functional teams to ensure the organization's infrastructure is resilient, compliant, and aligned with best practices.

Key Responsibilities:

Infrastructure Security Strategy and Leadership

• Develop and execute a comprehensive infrastructure security strategy to safeguard IT assets and data.
• Collaborate with senior leadership to align security initiatives with organizational goals.
• Provide thought leadership and expertise on emerging threats, vulnerabilities, and technologies.

Security Architecture and Implementation

• Design and implement secure infrastructure solutions, including on-premises, cloud, and hybrid environments.
• Ensure the integration of security best practices in the design and deployment of IT systems and applications.
• Lead initiatives to identify and mitigate infrastructure vulnerabilities through robust architecture and security controls.

Incident Response and Risk Management

• Oversee incident response activities, ensuring rapid containment and remediation of security incidents.
• Conduct risk assessments to identify potential security gaps and recommend mitigation strategies.
• Develop and maintain a risk management framework for infrastructure security.

Governance, Compliance, and Audit

• Ensure compliance with regulatory requirements, industry standards, and internal policies.
• Collaborate with internal and external auditors to address security compliance issues.
• Establish and maintain security metrics to measure the effectiveness of security programs.

Team Leadership and Development

• Build and lead a high-performing infrastructure security team, providing guidance and mentorship.

Vendor and Technology Management

• Evaluate and manage security tools, technologies, and third-party vendors.
• Stay updated on the latest security products and services to enhance the organization's security posture.

Qualifications:

• Bachelor’s degree in Computer Science, Information Security, or a related field; advanced degree preferred.
• Minimum 10 years of experience in cybersecurity, with a focus on infrastructure and network security.
• Proven leadership experience in managing security teams and large-scale infrastructure environments.
• Strong knowledge of security frameworks and standards (e.g., ISO 27001, NIST, CIS Controls).
• Hands-on experience with cloud platforms (e.g., AWS, Azure, GCP) and securing hybrid environments.
• Proficiency in security technologies such as firewalls, intrusion detection/prevention systems, SIEM, and endpoint protection.
• Relevant certifications (e.g., CISSP, CISM, CCSP) are highly desirable.

EA Licence No: 11C5502 | EAP Registration No.: R1983255