General Manager - Information Security

Responsibilities

• Primary responsibilities will be to oversee the safety and integrity of our infrastructure, network, and data as well as that of our customers.
• Review and refine data and network security processes, development methodologies, and ICI platform security.
• Working with internal stakeholders across IT, Professional Services, Engineering, Cloud Operations, and Customer Support, ensure that our security processes are the best in the business and are regularly updated.
• You will work with best-in-class security consultants to audit and improve our overall organizational security.
• Instrumental in fostering the security culture within the organization and helping keep the leadership team informed and educated on our security and risk posture.
• Work closely with customers, IT, and Operations to manage & respond to security incidents.
• Perform your own security research into new tools and techniques and where appropriate implement to improve security posture.

Skills and Qualifications

• Bachelor’s degree in Mathematics, Statistics, Computer Science, or Engineering or equivalent experience.
• 18+ years’ management experience in an IT Security/enterprise SaaS environment.
• 10+ years’ experience working with public cloud, preferably on Microsoft Azure and Office 365 security.
• A minimum of six years of experience in penetration testing/infrastructure security testing (Application security testing experience is added advantage).
• Excellent analytical, organizational, verbal, and written communication skills.
• Partner and support the CISO as a liaison on cybersecurity and privacy matters, including prioritization of risk remediation, risk quantification, and communication of risk decisions in a way that drives business value.
• Develop and lead and enforce information security policies, risk treatment directives, and report on cybersecurity program progress and risk decisions to business stakeholders, as well as the ability to influence cross-functionally.
• Drives enterprise-wide Information Security roadmaps, priorities, and control execution including future state planning to enhance user experience and secure the digital estate.
• Lead and implement IAM strategy and governance to ensure alignment with standards and zero trust principles.
• Optimize security functional domains and operations, and coordinate the preparation of cybersecurity resiliency plans to respond to cybersecurity and privacy breaches.
• Identify, evaluate, and manage innovations, tooling, and technologies to improve the security and compliance program.
• Liaise with the enterprise architecture, infrastructure, application, and cloud computing teams to build alignment, thus ensuring that information security requirements are implicit in architecture plans and security is built in by design.
• Perform risk assessments and data mapping on organizational controls for information security and provide practical, prompt, and actionable solutions to mitigate risks.
• Provide technical security leadership and build a culture of security awareness.
• Lead incident response and manage security incidents to minimize impact and ensure continuity of operations.
• Experience in ATP, SIEM tools, should have worked on various VAPT tools.
• Security certifications include: CISSP, CISM, CRISC, CCISO, and other technical certifications.


• This job is LinkedIn-supported #LI-MS