Director of Information Security Director of Information Security

About The Position

Requirements

• Past experience managing security or information security teams
• Past experience in a similar international role.
• Past experience in implementing ISO27001 and SSAE18 within an organization
• Qualified lead auditor and preferably has perused advanced qualifications such as CISA/CISM
• Experience in managing projects and virtual teams
• As this role will be a stand-alone/self-managed function, the position holder must be able to demonstrate influential abilities to gain buy-in and work with key stakeholders such as site management and IT.
• Ability to capture stakeholder requirements and be able to priorities the work to fulfill these requirements and maintain compliance
• Ability to work in a matrix organization, employees of different nationalities and backgrounds
• Technical diploma or degree in engineering/ computer science/ IT

Nice To Haves

• Good understanding and experience in implanting GDPR and DPIA will be a plus
• Training in GDPR would be a plus
• Good knowledge of other ISO standards (Eg: 9001, 22301)

Responsibilities

• Direct and manage the Global Information Security Team
• Own the development and implementation of the Group Information Security (IS) strategy for the copmany in close co-operation with key stakeholders such as Cyber Security, IT compliance, R&D and the information security resources at local entities.
• Accountable for all ISO27001, SSAE18, and all other security compliance certification implementation & on-going management of compliance for the company
• Co-ordinate and harmonize IS processes and the Information security Management System (ISMS) across other sites
• Lead process to ensure business units comply to the ISO27001 standard and contribute to the wider improvement of the Group security framework.
• Supporting customer project teams in information security topics
• Responsible for ensuring all vendor and customer contracts align with the global information security compliance requirements.
• Accountable for Managing and Leading the Global Information Security Team of 6-8 resources and a Direct report to the Chief Security Officer
• Accountable for implementation & managing 27001 and SSAE certifications
• Co-ordination responsibility of the ISMS
• Process owner and provider of subject matter expertise to the business on Information Security and information security certificaiton
• Implementation of standardized IS controls within business processes
• Support the Business Management to make informed decisions regarding information security
• Coach, train employees in information security (incl. awareness)
• Manage & conduct internal 27001 and SSAE18 audits
• Develop reports (incidents, audits, risks, etc.) to support wider communication of the Info Sec.
• Perform internal information security audits
• Support and advise on customer requests for information security
• Support and advise for supplier relationships
• Satisfy business in Solution customer projects by providing information security expertise

Benefits

• medical
• dental and vision coverage
• life insurance
• 401(k)-retirement plan featuring a generous company match incentive
• three (3) weeks of Paid Time Off (PTO)
• eleven (11) paid holidays
• tuition reimbursement program
• optional pet insurance
• supplemental medical coverage