Cyber Security Strategy: Develop and implement the company's cyber security strategy, ensuring alignment with business objectives and industry best practices.
Security Operations: Oversee the management of security operations, including monitoring, incident detection and response, threat hunting, and vulnerability management.
Team Leadership: Lead and mentor a team of cyber security professionals, fostering a collaborative and high-performance work environment.
Security Policies: Establish and enforce cyber security policies, procedures, and compliance standards to protect sensitive data and maintain regulatory compliance.
Risk Assessment: Conduct regular risk assessments and security audits, identifying vulnerabilities and recommending mitigation strategies.
Security Awareness Training: Develop and deliver cyber security training programs for employees to raise awareness and promote best practices.
Incident Response: Lead the incident response team in the event of security incidents or breaches, ensuring swift and effective resolution.
Vendor Security: Manage vendor security assessments and ensure third-party vendors adhere to cyber security standards.
Security Technology: Evaluate and implement security technologies and tools to enhance the organization's security posture.
Qualifications:
Bachelor's degree in Cyber Security, Information Technology, or a related field. Relevant certifications (e.g., CISSP, CISM, CISA) are a plus.
Proven experience as a Cyber Security Manager or in a similar leadership role, with a strong track record of successful cyber security management.
In-depth knowledge of cyber security principles, practices, and emerging threats.
Strong leadership and team management skills, with the ability to inspire and develop cyber security professionals.
Excellent problem-solving and analytical abilities.
Proficiency in security technologies, tools, and incident response protocols.
Understanding of data privacy and compliance regulations (e.g., GDPR, HIPAA).
Strong communication skills, with the ability to convey technical information to non-technical stakeholders.
