You will be a hands-on Information Security Manager with a deep technical background to lead the protection of our clients' infrastructure, products, and customer data. You will have a specific emphasis on infrastructure security, encryption, and incident response.
Client Details
A payments solutions company in the Middle East.
Description
- Develop and manage a comprehensive security program focused on securing infrastructure, products, and customer data.
- Oversee the development and enforcement of security policies, incident management processes, and risk mitigation strategies.
- Collaborate with development teams to integrate security into each phase of the software development lifecycle. Ensure code reviews, secure coding practices, and vulnerability scanning are executed.
- Ensure robust security measures are implemented to protect IT infrastructure, including data centers, customer-hosted systems, and internal environments.
- Lead regular penetration testing, vulnerability assessments, and remediation efforts across all systems, collaborating with development and IT teams to ensure security posture.
- Implement and manage encryption technologies and data protection patterns to safeguard sensitive information and ensure compliance with regulatory requirements.
- Lead incident detection, response, containment, and forensic investigations. Proven ability to handle high-severity incidents and mitigate potential risks.
- Conduct IT risk assessments, manage vendor risk, and implement security controls to mitigate vulnerabilities.
Profile
- 10+ years of experience in Information Security.
- Strong technical background, with deep expertise in security architecture, penetration testing, and infrastructure security.
- Extensive experience in the secure software development lifecycle (SDLC), including secure coding, vulnerability management, and code reviews.
- Expertise in incident response, digital forensics, and malware containment.
- Familiar with encryption, data protection patterns, and regulatory compliance.
- Experience securing cloud environments (AWS/Azure) and financial systems like SWIFT.
- Certifications such as CISM, CISSP, ISO 27001 LI/LA are preferred.
Job Offer
This is a unique opportunity to join a leading organization and play a key role at a growth stage.
Skills
SSDLC, Cloud