Job Description

The incumbent will oversee and coordinate the information security efforts across the company. They will be
responsible for establishing and maintaining a comprehensive information security program to ensure that
information assets are adequately protected.Cybersecurity Management:
\xef\x83\x98 Develop and implement cybersecurity policies, procedures, and best practices.\xef\x83\x98 Support the business in planning and implementing cybersecurity initiatives.
\xef\x83\x98 Evaluate and recommend to the management, the approaches to maintain a strong cybersecurity resilience
with best usage of available resources.
\xef\x83\x98 Conduct regular risk assessments and vulnerability scans to identify potential threats and weaknesses.
\xef\x83\x98 Monitor networks and systems for security breaches and promptly respond to incidents.
\xef\x83\x98 Coordinate the analysis of security incidents, propose changes based on lessons learned.
\xef\x83\x98 Analyse the IT environment and make recommendation for Disaster Recovery (DR), remote access, network
appliance, Server, application, and Endpoints.
\xef\x83\x98 Develop and implement network security strategies, policies, and procedures.
\xef\x82\xb7 IT Management and Support
\xef\x83\x98 Manage and coordinate work of external partners to deliver IT and cybersecurity related responsibilities.
\xef\x83\x98 Provide guidance and support to other IT teams on security-related matters, including network security,
endpoint protection, and data encryption.
\xef\x83\x98 Collaborate with IT team to integrate security measures into new and existing systems and applications.
\xef\x83\x98 Lead or support IT projects with security implications, such as system upgrades, cloud migrations, and
software deployments.
\xef\x83\x98 Liaisoning between operators, vendors, and Organization management on matters relating to cyber security.
\xef\x83\x98 Review all processes and procedures around data protection and privacy and advise.
\xef\x83\x98 Organization regarding any updates that may be required.
\xef\x83\x98 Implement and provide necessary consultation for a Data Protection Impact Assessment (DPIA).
\xef\x83\x98 Collaborate with IT teams to implement security controls, patches, and configuration changes to mitigate
identified vulnerabilities.
\xef\x82\xb7 Compliance and Governance:
\xef\x83\x98 Will represent IT in SOX process, specifically for ITGC, ITAC and Business Process Controls
\xef\x83\x98 Ensure compliance with relevant industry standards and regulations, such as SOX, NIST, ISO
\xef\x83\x98 Maintain documentation and evidence of compliance activities for audit purposes.
\xef\x83\x98 Assist in facilitating internal and external IT audits and assessments.
\xef\x83\x98 Security prevention planning and maintain risk registry, ensuring remediations are aligned.
\xef\x83\x98 Corporate acceptable cyber risk policy
\xef\x82\xb7 Training and Awareness:
\xef\x83\x98 Lead and monitor user awareness training, tracking of training and phishing program coordinate with
corporate campaigns.
\xef\x83\x98 Conduct cybersecurity awareness training for employees to promote a culture of security consciousness.
\xef\x83\x98 Keep abreast of the latest cybersecurity threats, trends, and technologies and disseminate relevant
information to stakeholders.

Talent Leads Consultants