Information Security Manager 1

Mission

Responsible for applying risk management discipline, understanding business risks, defining security requirements and policies, and managing Information Security Projects and Operations.

Tasks and responsibilities

• Build and evolve the Information Security discipline in all its scope: Technology, People and Processes.
• Provide input and critical thinking for the construction of the Information Security Roadmap.
• Internal responsible for low-complexity Security projects, full accountability for Project Management: scope management, cost tracking, progress report, etc.
• Interact with IT functions and Business stakeholders to get a full understanding of the business context, risks, concerns, and assist them in making risk-informed decisions.
• Apply Risk Management practices to the Business and propose risk mitigation plans.
• Translate IS requirements into security policies at technical level that enable Business objectives.
• Provide Technical Assurance to Risk Assessment and Risk Monitoring activities: hands-on technical understanding of IT Infrastructure (AD, Networking, Cloud infrastructure) and Security components (EDR, AV, FW, etc).
• Support to low-complexity Security Operations: alert management, business impact analysis, actions plans, follow-up.
• Lead Personnel Awareness actions: presentations, communications, etc.

Education

• Bachelor degree in a technical field 

Experience

• At least 5 years of experience in a similar role

Specific Knowledge

• Technology savy (IT infrastructure & Security components)
• Risk Management methologies
• Cybersecurity
• Business analysis
• Security standards and frameworks (e.g. NIST CSF). 

Values

• Care: we listen & empathize, we value diverse perspectives & backgrounds and we help each other succeed.
• Courage: we challenge the status quo, we take full ownership and we learn from our success & failures
• Innovation: we put the patient and customer at the center, we create novel solutions and we empower entrepreneurial mindsets. 
• Simplicity: we act decisively and avoid over-analysis, we understand why before we act and we are agile & keep things simple.