Write and Distribute IS Security Policies, standards, guidelines and baselines as directed by the Deputy CISO
Work closely with the Company's IS Governance team to have the appropriate employees trained on new procedures
Oversee Company's Systems security policies, standards, guidelines and baselines throughout their life-cycle
Ensure policies are reviewed and updated regularly.
Perform high level risk assessments & gap analysis based on Company's and Industry Security policies and standards.
Create a risk mitigation plan as an outcome of the security assessments
Apply expert knowledge to initiate good security practices and planning in collaboration with other teams
Demonstrate Customer service excellence and teamwork attitude
Work closely with the Global Process Owners / Process Leaders to be a trusted security partner
Submit timely KPIs according to the IS QMS system
Professional certifications like CISA, ISO 27002 LA and CISSP (preferable) or academically acquired security degree
He (She) must have an up to date understanding of the security measures at all stages of the information systems life cycle.
Satisfy project stakeholders, sponsors and team members
Be innovative and find best fit solutions aligned with business objectives
Knowledge of information security standards (NIST, COBIT, ISO 27002, etc.), rules and regulations related to information security and data confidentiality (HIPAA, PCI, Data Privacy)
Very well understanding of information security concepts and methodology and ability to learn new technologies
IT orientated degree or equivalent commercial experience required
Languages: strong command of English is essential, others are a bonus
Ability to work independently with or without direction and/or supervision.
Ability to prioritize and multitask. Flexibility and adaptability in work approach.
Calmness and clarity of thought under pressure and ability to maintain confidentially.
Strong analytical and problem solving skills
Strong written and verbal communication skills.
Demonstrated leader with team-oriented interpersonal skills; ability to effectively interface with a broad range of people and roles.
Accept responsibility and personal accountability.