Key Responsibilities :
• Lead ISO 27001 Implementation : Oversee the implementation, operation, support, and maintenance of our Information Security Management System (ISMS) in accordance with ISO/IEC 27000 series standards.
• Policy Development : Prepare and implement essential information security policies, standards, procedures, and guidelines. Collaborate with the Security Committee to secure necessary approvals and feedback.
• Compliance and Monitoring : Design and operate compliance monitoring and improvement activities to ensure adherence to internal security policies and applicable laws and regulations.
• Project Support : Assist departments and manage projects related to the implementation of the information security management system.
• Training and Awareness : Conduct information security awareness, training, and educational activities.
• Risk Assessment and Control : Manage information security risk assessments and control selection activities.
• Strategic Direction and Liaison : Provide strategic direction to related governance functions (Risk Management, IT, HR, Legal, and Compliance). Advise senior and middle managers on routine security activities and emerging security risks and control technologies.
Requirements :
• Proven experience in implementing, maintaining, and supporting an ISO 27001 program.
• Experience in performing risk assessments and tracking ISO remediation efforts.
• In-depth knowledge of ISO 27001 policies and processes.
• Certification : PECB Certified ISO/IEC 27001 Lead Implementer.