Description
Job Overview:Join a leading organization in the healthcare sector, dedicated to enhancing healthcare services through innovative technology and robust cybersecurity measures. We are seeking a proactive and highly skilled CISO as a Service to ensure the highest standards of information security and compliance with regulatory requirements.
Job Description:
The Chief Information Security Officer (CISO) as a Service is a pivotal role responsible for overseeing and ensuring the cybersecurity posture and compliance of the organization. The CISO will manage and execute cybersecurity initiatives, ensure 24/7 availability for emergency response, and work towards achieving ISO 27001 implementation to a maturity of 70% within 120 days, among other duties.
Responsibilities:
• Strategic Leadership: Direct strategic initiatives for cybersecurity, aligning security measures with the organization's overarching goals.
• ISO 27001 and NIS2 Compliance: Lead the efforts to achieve at least 70% ISO 27001 implementation within the first 120 days, focusing on policy development and compliance, not just certification.
• Risk Management and Security Analysis: Conduct risk assessments and gap analyses in alignment with organizational security policies and standards.
• Incident Management and Response: Manage 24/7 outsourced SOC operations to handle and escalate IT security emergencies efficiently.
• Security Policy and Governance: Oversee documentation and validation of security policies, actively validating and supervising the implementation of security tools.
Requirements:
• Advanced certifications in ISO27001, CISA, CISSP, or similar.
• Significant experience in a CISO or similar role, preferably within the healthcare sector.
• Demonstrated capability to manage cybersecurity operations around the clock.
• Fluent in French and English, with excellent communication, strategic thinking, and leadership skills.
• Economic and Financial Capacity: Must demonstrate a turnover of over €240,000 in IT security consultancy for each of the last three fiscal years.
The distribution of the 120 days of work for the "CISO as a Service" role is structured as follows:
Approximate Monthly Distribution: The consultancy service is scheduled on an approximate basis of 10 days per month over a period of 12 months. This distribution is indicative and might vary depending on the workload and the specific needs as the project progresses??.
Working Conditions:
• Onsite and Remote Work: The role requires at least 70% onsite presence to effectively manage security operations and engage with internal teams. Up to 30% of duties can be performed remotely, providing flexibility in response to organizational needs.
• Project Timeline: Emphasis on achieving significant project milestones within the first 120 days of appointment.
Contract Terms:
• Duration: 12-month contract with potential for extension based on performance and project requirements.
• Availability: Candidates must be available 24/7, managed through both onsite presence and remote monitoring.
Compensation:
A competitive compensation package, including salary, comprehensive benefits, and performance incentives, will be tailored based on experience and qualifications.
Application Process:
Interested candidates are invited to submit detailed resumes and cover letters through our designated application portal. Please highlight your experience in managing IT security in a complex environment and your vision for enhancing our cybersecurity framework.