CISO

We are looking for a Chief Information Security Officer (CISO) who will be responsible for developing and implementing security strategies and programs to safeguard the company's assets, employees, customers, and stakeholders. The CISO will work closely with executive management to establish policies, procedures, and standards that protect the company's physical and digital infrastructure.

DUTIES & RESPONSIBILITIES:

• Develop, implement and monitor a strategic, comprehensive enterprise information security and IT risk management program.
• Develop and implement security policies, procedures, and standards to protect company assets, employees, customers, and stakeholders.
• Support the company in its preparation for the ISO27001Certification and achieve it
• Conduct risk assessments to identify potential security threats and vulnerabilities.
• Develop and implement crisis management plans to respond to security incidents.
• Manage security operations, including access control, video surveillance, and alarm systems.
• Develop and implement cybersecurity measures to protect the company's digital infrastructure.
• Oversee investigations of security incidents and coordinate with law enforcement agencies as necessary.
• Develop and manage security budgets.
• Ensure compliance with applicable security regulations and standards.
• Provide security training and awareness programs to employees and stakeholders.
• Communicate security risks and strategies to executive management and the board of directors.

QUALIFICATIONS & EXPERIENCE:

• 10+ years of experience in security management, with at least 5 years in a leadership role.
• Knowledge of security regulations and standards, including NIST and ISO.
• Experience managing physical security operations, including access control and surveillance systems.
• Experience managing cybersecurity operations, including network security, endpoint security, and incident response.
• Excellent communication and leadership skills.
• Strong analytical and problem-solving skills.
• Ability to work independently and as part of a team.
• Ability to manage multiple projects simultaneously.
• Relevant certifications, such as Certified Information Systems Security Professional (CISSP), Certified Protection Professional (CPP), or Certified Fraud Examiner (CFE), are a plus.