Senior Executive - Information Security

Information Security Management:

• Build and maintain effective relationships with a division s Business and Technology stakeholders. Be the voice of information security in the division/business area and the voice of the business within the information security
• Align information security responsibilities and working practices of divisions and security teams. Identify and resolve risks and issues
• Delivery of point services such as vulnerability assessments, project risk assessments, vendor assessments
• Facilitate planning, introduction, and delivery of information security services and initiatives
• Where necessary ensure that processes are documented and communicated in language that is relevant and understandable to international and /or non-technical audiences
• Advise stakeholders on how to achieve the relevant controls and assist with solutions to support them
• Develop or manage internal security training programs and maintain materials for end users
• Guide Security practices with 3rd party providers such as cloud services, technology vendors, or any other services outsource to a 3rd party to ensure compliance with company policies and standards

Security Operations Centre (SOC):

• Oversee the day-to-day operations of the Security Operations Centre (SOC), ensuring 24/7 monitoring and response.
• Develop and implement SOC processes, including incident response, threat intelligence, and vulnerability management.
• Manage and optimize the use of security information and event management (SIEM) systems, including Trend Micro and other industry-standard tools, to detect, analyze, and respond to security incidents.
• Lead the investigation and resolution of security incidents, coordinating with internal and external stakeholders as needed.
• Develop and maintain SOC runbooks, playbooks, and standard operating procedures (SOPs).
• Perform regular threat hunting activities to proactively identify potential security threats and vulnerabilities.
• Implement and manage endpoint protection solutions, including Trend Micro, to safeguard organizational assets.
• Conduct regular security assessments and audits to ensure the effectiveness of security controls and processes.
• Collaborate with IT and security teams to integrate new technologies and enhance SOC capabilities.
• Stay updated on the latest security threats, vulnerabilities, and industry best practices to continually improve SOC operations.
• Provide regular reports on SOC activities, incidents, and trends to senior management.

Required Skill Set :

• Bachelor s degree in information security, Computer Science, or a related field.
• Relevant certifications such as CISSP, CISM, CompTIA Security+, CEH, or similar.
• Proven experience with SOC operations, including incident response, threat intelligence, and security monitoring tools.
• 10 + years of Industry experience in security management roles.
• Extensive knowledge of ISO 27001, ISO 27701, GDPR, HIPAA, SOC 2 Type 2, and ISO 31000.
• Proven experience in conducting audits, implementing compliance programs, and managing risk.
• Strong analytical, problem-solving, and communication skills.
• Ability to work independently and as part of a team in a fast-paced environment.
• Strong knowledge and hands-on experience with SIEM systems, including Trend Micro and other leading solutions.
• Excellent analytical and problem-solving skills.
• Strong communication and interpersonal skills.