To ensure the security of an organization's IT systems and data, and for leading a team of IT security professionals to implement and maintain effective security measures. They must be knowledgeable about the latest security threats and trends, and able to develop and implement appropriate solutions to mitigate risk and protect the organization's assets.
Responsibilities
- Lead the implementation of the annual business plan and targets and implement the strategic agenda of the IT security deliver Nadec vision and mission.
- Ensure that the strategy is translated into operational business plans for the IT Security and monitor the performance.
- Direct the activities of the IT Security team to ensure that all work is carried out efficiently, in line with the strategic project management plans, policies and procedures.
- Build and lead a motivated, engaged, and competent team, by setting priorities and objectives, managing performance, and providing ongoing feedback and coaching to meet the functional challenges and goals.
- Serve as a role model to ensure employees awareness and commitment to NADEC vision, mission, values, and corporate strategy to establish a highly engaged and motivated team, and continuously improve performance.
- Lead the preparation of the department budget and monitor financial performance versus the budget so that the business is aware of anticipated costs/revenues, areas of unsatisfactory performance are identified, and potential performance improvement opportunities are capitalized upon.
- Create and enforce security policies and procedures that help protect an organization's information assets. This may include security protocols for data storage, access control, and network security.
- Manage a team of security professionals, including IT security specialists, security analysts, and other security personnel. They must ensure that their team is adequately trained and equipped to handle security incidents and threats.
- Assess the organization's security risks and vulnerabilities and develop strategies to mitigate them. This involves identifying potential threats and evaluating the likelihood and impact of each threat on the organization.
- Respond to security incidents quickly and effectively. This involves investigating security breaches, identifying the source of the breach, containing the damage, and implementing measures to prevent future incidents.
- Monitor security systems and networks to identify potential threats and vulnerabilities. They must also stay up-to-date with the latest security technologies and trends to ensure that the organization's security systems are up-to-date and effective.
- Provide training and education to employees on security policies and procedures. This ensures that employees are aware of security risks and can take appropriate actions to protect the organization's information assets.
- Work closely with other IT professionals to ensure that security measures are integrated into all aspects of an organization's information systems. They must also collaborate with other departments, such as legal and compliance, to ensure that the organization is meeting all relevant security regulations and standards.
- Stay up-to-date with the latest security technologies and trends by conducting research and attending conferences and seminars. This allows them to identify new threats and vulnerabilities and develop strategies to mitigate them.
- Recommend appropriate security solutions based on an organization's needs and budget. This may involve evaluating third-party security products and services and making recommendations to senior management.
- Perform regular audits and assessments of an organization's security.
Qualifications
Bachelor's degree in computer science, Engineering, Information Technology, or related field Deep understanding of security protocols, technologies, and compliance requirements. Relevant certifications (e.g., CISSP, CISM) are highly desired. Master's degree in a related field is preferred.
Required Skills
Strong leadership, communication, and problem-solving skills. Proven track record in managing security incidents and driving security initiatives. Ability to diagnose/coordinate repair of IT equipment by dispatching & tracking service providers. Good working knowledge of a variety of technology platforms and tools including: Microsoft systems (e.g. Windows 2008 Server, Active Directory, Exchange, SharePoint), Linux, Oracle, SQL Server, database Proficiency in systems architecture, hardware, software, virtualization, cloud services, and security measures. Strong leadership, problem-solving, and decision-making abilities with a focus on achieving strategic objectives. Excellent communication and interpersonal skills to lead a team and collaborate effectively across departments. Ability to develop strategic direction and vision for the IT Security team.
