We are seeking an experienced Information Security and Business Continuity Manager to lead and oversee the development, implementation, and management of our information security and business continuity programs. This role is crucial in safeguarding our organization's sensitive data, ensuring business resilience, and maintaining compliance with regulatory requirements.
Key Responsibilities: - Information Security:
- Develop and maintain information security policies, procedures, and standards
- Manage security awareness and training programs for employees
- Conduct regular security assessments and vulnerability scans
- Oversee incident response and manage security breaches or incidents
- Business Continuity:
- Develop, implement, and maintain a business continuity and disaster recovery plan
- Coordinate with various departments to ensure continuity of essential operations
- Conduct regular testing and drills to evaluate the effectiveness of the business continuity plan
- Risk Management:
- Identify potential security and business continuity risks and implement mitigation strategies
- Ensure compliance with industry standards and regulations related to information security and business continuity
- Incident Management:
- Respond to and manage security incidents, breaches, and disaster recovery situations
- Provide post-incident analysis and recommendations for improvement
- Policy and Compliance:
- Monitor and enforce compliance with security policies, standards, and regulations
- Keep abreast of emerging threats and adjust security strategies accordingly
- Vendor Management:
- Collaborate with third-party vendors to assess their security and business continuity capabilities
Requirements
- Bachelor's degree in Information Security, Computer Science, or a related field. A Master's degree is preferred
- Professional certifications such as CISSP, CISM, or CBCP are highly desirable
- Minimum of 10 years of experience in information security and business continuity management
- Thorough understanding of regulatory compliance and industry standards
- Excellent problem-solving and analytical skills
- Strong leadership and interpersonal skills
- Effective communication and the ability to convey complex technical concepts to non-technical stakeholders