remote

Senior IT Security Manager Group

IT Security Manager Group

Senior IT Security Manager Group position — see original posting for full details.

About the role

We are helping our client to look for an experienced Senior Security Manager. The Senior Security Manager serves as the process owner of all assurance activities related to the availability, integrity and confidentiality of customer, business partner, employee and business information in compliance with the organization's information security policies. A key element of the role is working with executive management to determine acceptable levels of risk, establishing and maintaining a corporate-wide information security management program to ensure that information assets are adequately protected.

Responsibilities

· Advisory

Lead in the overall leadership on cybersecurity strategy, risk management and incidence response;
Provide leadership to the enterprise's information security organization;
Partner with business stakeholders across the company to raise awareness of risk management concerns;
Assist with the overall business technology planning, providing a current knowledge and future vision of technology and systems;
Provide regular communication at executive/company level on the global cybersecurity scene.

· Governance / Audit / Risk / Compliance Management

Establish and formalize Risk Management for Business and IT through risks assessment;
Propose investments against risks exposure vs risks acceptance level vs impact to business and operations;
Work directly with the business units to facilitate risk assessment and risk management processes;
Understand and interact with related disciplines through committees to ensure the consistent application of policies and standards across all technology projects, systems and services;
Ensure compliant to local and global regulatory on IT/Cyber Security for both shore and vessels.

· Operation

Owner to develop, implement and monitor a strategic, comprehensive enterprise information security and IT risk management program that covers on-prem, cloud and vessels globally across the group of subsidiaries;
Develop and enhance an information security management framework for the organization;
Oversee the monitoring of SIEM/SOAR;
Overall owner responsible for Incident Response on any cyber related attacks;
Work with external vendor(s) and internal IT management for cyber related IT BCP.

· Architecture

Member of the Technology Architecture Board to design and develop Security-first Software (API, Micro-services, Database/Stream) and Infrastructure (Cloud/On-Prem) architecture.
Project Management To manage IT security related projects and work with respective stakeholders so as to enhance the company IT security.
To manage timeline, budget and scope of work for IT security projects
To manage stakeholders expectations and analyse the risk and impact of the company's oper

About the role

Responsibilities

· Advisory

Lead in the overall leadership on cybersecurity strategy, risk management and incidence response;
Provide leadership to the enterprise's information security organization;
Partner with business stakeholders across the company to raise awareness of risk management concerns;
Assist with the overall business technology planning, providing a current knowledge and future vision of technology and systems;
Provide regular communication at executive/company level on the global cybersecurity scene.

· Governance / Audit / Risk / Compliance Management

Establish and formalize Risk Management for Business and IT through risks assessment;
Propose investments against risks exposure vs risks acceptance level vs impact to business and operations;
Work directly with the business units to facilitate risk assessment and risk management processes;
Understand and interact with related disciplines through committees to ensure the consistent application of policies and standards across all technology projects, systems and services;
Ensure compliant to local and global regulatory on IT/Cyber Security for both shore and vessels.

· Operation

Owner to develop, implement and monitor a strategic, comprehensive enterprise information security and IT risk management program that covers on-prem, cloud and vessels globally across the group of subsidiaries;
Develop and enhance an information security management framework for the organization;
Oversee the monitoring of SIEM/SOAR;
Overall owner responsible for Incident Response on any cyber related attacks;
Work with external vendor(s) and internal IT management for cyber related IT BCP.

· Architecture

Member of the Technology Architecture Board to design and develop Security-first Software (API, Micro-services, Database/Stream) and Infrastructure (Cloud/On-Prem) architecture.
Project Management To manage IT security related projects and work with respective stakeholders so as to enhance the company IT security.
To manage timeline, budget and scope of work for IT security projects
To manage stakeholders expectations and analyse the risk and impact of the company's oper

Senior IT Security Manager Group

About the role

Senior IT Security Manager Group

About the role

Skills