This position will offer the opportunity to play a key role in strengthening the organization’s cybersecurity posture. In this position, you will conduct initiatives in cybersecurity governance, risk management, and compliance (GRC), ensuring alignment with international standards and regulations.
Key Accountabilities
Governance
Develop, implements and enforce cybersecurity policies, procedures, and controls ensuring alignment with industry standards and best practices.
Take a proactive role in cybersecurity awareness and training initiatives, ensuring all employees understand and follow best practices for securing information and systems.
Risk Management
Help identify, assess, and mitigate cybersecurity risks.
Assist in monitoring and reporting on risk reduction efforts.
Compliance
Advise on understanding and ensuring compliance with relevant cybersecurity regulations, standards, and frameworks.
Conduct compliance assessments and audits, ensuring all requirements are met.
Take a leadership role in formulating responses to compliance findings, ensuring swift and effective resolution.
Documentation and Reporting
Maintain accurate and up-to-date records of cybersecurity policies, risk assessments, compliance documentation, and training materials.
Develop comprehensive reports for management and stakeholders, offering insights and recommendations for continuous improvement.
Segregation of Duties
Maintain and regularly update the SoD matrix.
Provide technical solutions and support to clean up SoD risks and ensure proper segregation of roles.
Networking/Key relationships
Key users in each of the functional area
Minimum Knowledge & Experience required for the position:
Degree in the field of computer science or engineering or demonstrable experience in the field of Information Security.
A minimum of 5-10 year of proven working experience cybersecurity governance, risk management, and compliance.
Profound knowledge of interconnectional cybersecurity standards, regulations and best practices, such as (NIST, ISO 27001).
Experience or familiarity with GRC platforms (Desirable SAP GRC).
Strong analytical skills with the ability to assess and communicate complex cybersecurity issues.
Skills & Capabilities:
Teamwork and collaboration.
Excellent communication skills.
Organizational skills.
Ability to work independently managing assigned projects.
Adaptable to change.
Integrity and trust.
Time management.
Fluent in English, both oral and written.
Travel requirements:
20% of time