JOB PURPOSE
• Establish and maintain robust security governance frameworks to ensure effective management and oversight of security operations and compliance.
• Align security governance with business goals and regulatory requirements.
ROLES AND RESPONSIBILITIES
Security Governance Framework Development:
• Develop and implement a comprehensive security governance framework that supports the organization's technology landscape.
• Ensure that all security policies and procedures are scalable, sustainable, and aligned with business needs.
Risk Management and Compliance:
• Perform vulnerability assessments, security testing, and risk analysis.
• Identify and assess security risks and develop mitigation strategies.
• Ensure compliance with relevant regulations and standards, such as GDPR and ISO 27001.
Incident Management and Response:
• Lead the development and implementation of incident management processes.
• Oversee the monitoring of security systems and the investigation of security breaches.
Stakeholder Engagement and Communication:
• Communicate regularly with executive leadership and key stakeholders about security risks and initiatives.
• Collaborate with other departments to ensure alignment of security efforts with business goals.
Team Leadership and Development:
• Lead and mentor a team of security governance professionals.
• Foster a culture of continuous improvement and professional growth within the team.
RELATED YEARS OF EXPERIENCE
Minimum of 10 years of experience in security governance, with a proven track record of leading successful security initiatives in complex organizations.
YOE IN MANAGERIAL POSITION
Min of: 5+ years of managerial experience in a related field.
FIELD OF EXPERIENCE
• Large multinationals, Commercial industries, Real Estate.
TECHNICAL AND INTERPERSONAL SKILLS
• In-depth knowledge of security governance principles, methodologies, and technologies.
• Strong leadership and team management abilities.
• Excellent communication and stakeholder management skills.
• Certifications such as CISSP, CISM, or similar are highly desirable.
QUALIFICATION
• Bachelor’s degree in Computer Science, Information Security or a related field.