Routine line management within the Information Security Management function.
Be a part of the team in coordinating on the smooth workflow of the processes in line with the management policies and procedures.
Implements security improvements by assessing current situation; evaluating trends; anticipating requirements.
Determines security violations and inefficiencies by conducting periodic audits.
Coordinate with the processes during audits and ensure the process compliance is in line with the agreed factors relating to Information Security.
Liaison with and offers strategic direction to related governance functions (such as Physical Security/Facilities, Risk Management, IT, HR, Legal and Compliance) with managers throughout the organization as necessary, on information security matters such as routine security activities plus emerging security risks and control technologies.
Leads the design, implementation, operation and maintenance of the Information Security Management System based on the ISO/IEC 27000 series standards, including certification against ISO/IEC 27001 where applicable
Forms a “Centre of Excellence” for information security management, for example offering internal management consultancy advice and practical assistance on information security risk and control matters throughout the organization and promoting the commercial advantages of managing information security risks more efficiently and effectively
Coordinate in the preparation and the implementation of necessary information security policies, standards, procedures and guidelines, in conjunction with the Security Committee
Coordinate with departments in the suitable information security awareness, training and educational activities
Coordinate in information security risk assessments and controls selection activities.
Coordinate in the activities relating to contingency planning, business continuity management and IT disaster recovery in conjunction with relevant functions and third parties.
Provide employee training on compliance related topics, policies, or procedures.
This is not an exhaustive listing and you will perform such other duties appropriate to the office as may be assigned to him/her from time to time.