Information Security Manager

Main purposes of the job:To manage, develop, and maintain the organization's IT security framework, ensuring the integrity, confidentiality, and availability of information assets while meeting regulatory compliance requirements and addressing emerging cyber threats.Responsibilities: Manages cyber-security plan, security infrastructure, security standards and best practices; set up procedures and automated processes to monitor the status of computers and networksPrepare IT Security ArchitectureResponsible security performance reviews & measurement: build on an existing information security program and ongoing security projects that address information security risks and compliance requirements; manage the process of gathering,analyzing and assessing the current and future threat landscapeBuild on an existing information security program and ongoing security projects that address informationSecurity risks and compliance requirements; manage the process of gathering, analyzing and assessing the current and future threat landscapeEnsure audit trails, system logs and other monitoring data sources are reviewed periodically and are in Compliance with policies and audit requirements, Report on compliance with security policies, as well as the enforcement of policies across the company.Develop policies that encourage secure working and protect data, provide training for employees, explaining security risks and demonstrating good practicesLead research, evaluate, design, test, recommend or plan the implementation of new or updated information security hardware or software, and analyze its impact on the existing environment10Lead and ensure the success of PCI DSS (Payment Card Industry Data Security Standard) audits and certifications.11Provide resolution for problem solving escalations & checkingPOSITION COMPETENCIES:Technical Competency:Proficiency in IT security tools, techniques, and technologies.In-depth knowledge of cybersecurity frameworks (e.g., NIST, ISO 27001).Expertise in PCI DSS standards and audit processes.Strong understanding of threat analysis, risk assessment, and compliance requirements.Familiarity with system architecture design for security integration.Soft Competency Excellent analytical and problem-solving skills.Strong communication and interpersonal skills.Leadership and team management capabilities.Ability to train and mentor employees on security practices.Effective stakeholder management skills. JOB SPECIFICATIONMinimum Education - Bachelor’s Degree in Information Technology, Cybersecurity, Computer Science, or related fields (Master’s Degree preferred).Previous Relevant Work Experience - At least 5 years of experience in IT security, cybersecurity management, or related roles.Certification:CISSP (Certified Information Systems Security Professional) (optional)CISM (Certified Information Security Manager) (preferred)CEH (Certified Ethical Hacker) (optional)ISO 27001 Lead Auditor (preferred)