IT Security Lead

We are currently hiring for the position of IT Security Lead.

Role Purpose

The IT Security Lead is responsible for ensuring the safeguarding and protection of business infrastructure, systems, and data. The role supports and drives information security programs, initiatives, and projects, ensuring compliance with security policies, standards, and regulations while protecting the organization from evolving security threats.

Key Responsibilities:

• Develop and implement Identity and Access Management (IAM) processes, including user provisioning and access control

• Establish, enforce, and maintain security policies, procedures, and standards in line with regulations such as ISO 27001

• Identify, assess, and mitigate security risks and vulnerabilities

• Implement encryption mechanisms to protect sensitive data at rest and in transit

• Conduct regular security testing, including vulnerability assessments and penetration testing, and ensure remediation

• Plan and execute security drills to test incident response and disaster recovery procedures

• Monitor and analyze security logs and alerts to detect and respond to anomalies and incidents

• Deploy and manage endpoint protection solutions and ensure their effectiveness

• Collaborate with network teams to configure and optimize firewalls and intrusion detection systems

• Develop, maintain, and lead incident response plans, including investigation and resolution of security incidents

• Manage SIEM processes and enforce incident response workflows

• Support the selection, deployment, and management of security tools and technologies

• Coordinate and participate in security audits and assessments, ensuring implementation of recommendations

• Manage patching processes, ensuring timely deployment of security updates

• Prepare and present security reports to senior management and stakeholders

• Support vendor evaluation and contribute to IT security budget planning and control

• Promote security awareness and best practices across the organization in collaboration with HR and Communications

• Ensure adherence to SLAs and support business IT incident response activities

• Perform additional duties aligned with business needs and priorities

Key Competencies and Skills:

• Strong experience in information security, including leadership responsibilities

• In-depth knowledge of infrastructure, network, cloud, and systems security, as well as cryptography and security protocols

• Experience with vulnerability assessment and penetration testing methodologies

• Strong analytical and problem-solving skills with a risk-based approach

• Ability to manage multiple priorities and deliver within deadlines

• Effective communication skills, with the ability to present technical concepts to non-technical stakeholders

• Strong knowledge of IT systems, applications, databases, and operating systems

• Proven ability to handle high-pressure situations and make evidence-based decisions

• Excellent interpersonal skills and a collaborative mindset

• High attention to detail and commitment to data accuracy and integrity

Qualifications and Experience:

• Bachelor's degree in Information Security, Cybersecurity, Computer Science, Information Systems, or a related field

• Minimum of 8 years of experience in information security within an enterprise environment

• Experience delivering IT security services and solutions to business stakeholders

• Experience working within large organizations and complex environments

• Industry experience in FMCG is considered an advantage

• Professional certifications such as CISSP, CISA, or CCSP are preferred

• Strong project management experience with the ability to manage timelines, deliverables, and budgets

• Fluency in English is required

Technical Expertise:

• Proven expertise in infrastructure, cloud, network, operating system, and application security

• Experience in encryption, cryptography, and security frameworks

• Hands-on experience in incident response and security forensics

• Strong knowledge of compliance standards and security frameworks

Behavioral Competencies:

• Analytical thinking and problem-solving

• Strong communication and teamwork skills

• Planning, organizing, and prioritization capabilities

• Customer-focused mindset

• Initiative and adaptability in dynamic environments

Communication and Stakeholder Management

The role requires close collaboration with internal stakeholders including business partners, corporate teams, and IT teams, as well as external stakeholders such as customers, suppliers, and vendors.