Description
Manager IT Security & Governance (CISSP, CISA, Dutch, Risk)
As IT Security & Governance manager you will be responsible for oversight and coordination of the Governance, Risk and Compliance program with IT Security. You will have several principle accountabilities as outlined below.
This position reports to the CIO & IT security Committee.
Tasks & Responsibilities
Technical Expectations/Professional Practices:
- Directly responsible for procedures and controls to assure compliance with Internal Standards and legal requirements as well as good practices.
- Establish and oversee formal risk analysis and self-assessments program for various IT systems and processes.
- Help ensure compliance with Global IT Security Standards
- Establish and oversee vulnerability testing.
- Liaise with Internal Audit, Corporate Compliance and Risk Management to remediate new and outstanding issues; track security-related issues
- Oversee security policies, standards, guidelines and baselines. Ensure policies are reviewed and updated regularly.
- Promote and monitor our corporate wide IS Security awareness program.
- Maintain expertise on security trends through training, research and development in order to mitigate potential security exposures.
- Manage, coach, lead and develop a small staff of INFOSEC personnel.
- Train other staff and external parties as necessary.
Administrative Expectations:
- Ability to work independently with High Level direction.
- Ability to prioritize and multitask. Flexibility and adaptability in work approach.
- Calmness and clarity of thought under pressure and ability to maintain confidentially.
- Strong written and verbal communication skills.
- Demonstrated leader with team-oriented interpersonal skills; ability to effectively interface with a broad range of people and roles.
- Accept responsibility and personal accountability.
- Has practical experience in translating IT Security Policy into implementable actions & processes
Background/Qualifications:
- Profound knowledge of ISO27001
- A bachelor's degree is preferred or knowledge by experience
- Professional security management certification: CISSP or CISA preferred.
- Knowledgeable of governance, risk and compliance systems
- Fluently written and verbal knowledge of English and Dutch
Previous Work Experience:
- 5 or more years' experience in a similar function