Job Purpose: The CISO is responsible to lead the design, implementation, and management of IT security systems, Policy, Process and Infrastructure for client in order to protect the business computers, networks and data against security threats

Key Result Areas Supporting Actions

Assessment




- Assess the robustness of the IT security of the business & identify gaps

- Assess business IT security measures, such as firewalls, anti-virus software and passwords, to identify any weak points that might make information systems vulnerable to attack.

- Carry out simulated attacks to test the efficiency of security measures

- Oversee information security audits, whether by performed by team or third-party personnel

- Assess current technology architecture for vulnerabilities, weaknesses and for possible upgrades or improvement

- Prioritize security coverage to ensure that strategically important data, such as commercial information or personal data, receives the highest levels of protection.

Policies





- Design & monitor IT security policies & processes to increase secure working and data protection

- Develop the strategic roadmap for all next generation IT security protocols

- Develop IT security policies & circulate

- Review and approve IT security architecture

- Set up procedures and automated processes to monitor the status of computers networks and applications

- Analyze reports generated by the monitoring system to identify trends that might indicate a future risk

IT security Services Management




- Ensure 100% adherence to IT security policies & procedures





- Manage and configure physical security, disaster recovery and data backup systems

- Provide training for employees, explaining security risks and demonstrating good practices, such as using strong passwords and protecting data when they use mobile devices outside the office.

- Determine the cause and deal with any threat If the monitoring system detects unusual patterns of behavior

- Implement and oversee technological upgrades, improvements and major changes to the information security environment

Project Management





- Ensure quality & timelines are adhered to for all IT security projects




- Ensure that there is a thorough understanding of business & applications

- Propose IT security solutions for new applications

- Manage multiple IT security projects simultaneously with variable team size

- Develop detailed Project plans

- Monitor adherence to plans to ensure timeliness of projects

- Guide the team technically to deliver timely and quality output

- Adhere to company and project standards and guidelines

Process & Knowledge improvement





- Contribute to the company knowledge base and process improvements.

- Work with the processes and tools to ensure best practices are adhered to on every project

- Put in place knowledge management processes

- Keep abreast of the current information security landscape in the market

- Expand, maintain & establish new best practices for IT security management

- Create and maintain tools to help automate IT security processes

- Provide information security awareness training to Consumer Finance teams

Team Management Recruit, train, & motivating team members





- Build capability in ABC for IT Security Management

- Mentor junior team members and conduct periodical trainings to meet the market standards

- Guide the team technically to deliver timely and quality output

- Conduct & ensure regular performance reviews and feedback

- Keep the team motivated

Vendor Management





- Effectively manage vendors to get the desired output/service from them




- Identify & work with high quality & reliable vendors

- Monitor & manage performance of vendors as per the performance metrics defined

- Manage relationships with 3rd party security partners

This job opening was posted long time back. It may not be active. Nor was it removed by the recruiter. Please use your discretion.