Information Security Manager

Responsibilities: 

• Security Program Development and Management:

Develop and oversee the organization's information security program, including policies, procedures, and technical standards.

Conduct regular risk assessments and vulnerability assessments, ensuring that identified risks are effectively managed and mitigated.

Continuously evaluate the effectiveness of security controls and adjust strategies as needed.

• Security Operations and Incident Response:

Develop and maintain incident response procedures and playbooks.

Oversee security monitoring, threat detection, and remediation activities.

• Risk and Compliance Management:

Ensure compliance with relevant security standards and regulations (e.g., ISO 27001, GDPR, HIPAA, PCI-DSS).

Conduct regular audits to assess compliance and identify potential risks.

Collaborate with internal and external auditors, regulatory bodies, and clients as needed.

• Strategic Planning and Stakeholder Collaboration

Work closely with IT and business teams to align security initiatives with business goals.

Present security metrics, reports, and program updates to senior management and stakeholders.

Identify emerging security threats and evaluate new security technologies to improve the organization’s defenses.

• Security Architecture and Tools Management

Oversee the design, implementation, and maintenance of security architecture and tools, including firewalls, IDS/IPS, SIEM, DLP, and endpoint protection solutions.

Evaluate, recommend, and manage vendor relationships for security tools and services.

• Education: Bachelor's degree in Information Security, Computer Science, or a related field or relevant hands-on experience.
  
•  Certification: CISM, CISSP, or any other relevant InfoSec certification is required
• Experience in implementing ISMS
  
• Experience: Minimum of 3 years of experience in an information security Manager role in an ISO 27001-compliant environment
  

Soft Skills:

• Strong analytical, problem-solving, and decision-making skills.
• Excellent communication and interpersonal skills, with the ability to engage and influence stakeholders.
• Leadership abilities, including team-building and coaching skills.

Additional Nice to haves':

• Familiarity with cloud security (e.g., AWS, Azure) and modern security trends is preferred.
• Experience working with regulatory standards specific to other industries (e.g.,PCI DSS, HIPAA) is a plus.
• General interrest in Cyber & Information Security with a passion and grit to Continual Improvement
  

Our team comprises experts in their fields passionate about delivering high-quality work and maintaining a positive work culture. We value innovation, teamwork, and personal growth. As an experienced Information Security Manager, you will have the opportunity to make a significant impact on our projects and contribute to the success of our organization. If you are ready to embrace exciting challenges and foster a culture of excellence, we encourage you to apply.

What do we offer:

• Work remotely from anywhere in the world with a fully remote team and enjoy a mutually agreed-upon schedule that fits your needs.
• You will work primarily with EU-based colleagues, which will provide you with the opportunity to collaborate with people from diverse backgrounds and skill sets.
• Use your skills and expertise to make a significant impact on the delivery of projects in our company
• Work in a supportive environment that values your contribution and provides the resources and training you need to grow in your career.