Role profile:
Develop and implement the company's information security strategy and roadmap by building a robust security architecture and policies based on business needs, risk assessments, and regulatory requirements. Define security policies, standards, and procedures aligned with business objectives and industry best practices. Assess emerging threats and trends, and adjust security strategies accordingly. Identify, evaluate, and prioritize security risks across the organization. Develop and maintain a risk management framework to mitigate risks effectively. Manage the risk management program through planning, developing, coordinating, and implementing information technology disaster recovery and business continuity planning. Oversee the design, implementation, and maintenance of security controls, technologies, and processes. Coordinate incident response activities and lead efforts to mitigate security incidents. Conduct regular security assessments and audits to ensure compliance and effectiveness. Ensure compliance with relevant laws, regulations, and industry standards (e.g., GDPR, HIPAA, ISO 27001). Establish and maintain governance structures to support effective information security management. Continuous monitoring, analysis and closure of SOC alerts / events. Ensure effective functioning of the security solutions deployed.
Skills:
Experience:
