Job Title: Information Security Manager

Client Overview:

Our partner is a leading global commodities firm distinguished for its excellence in Energy and Metals sectors. We are in search of an Information Security Manager who comprehends the integration of Infrastructure IT with Information Security.

Skills & Experience:

• Profound understanding of infrastructure architecture, including hardware and software systems.
• Extensive knowledge of cyber risk landscapes and various attack vectors.
• Ability to uphold confidentiality while efficiently managing multiple projects concurrently.
• Background in information technology, preferably in an infrastructure role, with a specialised focus on cybersecurity.
• Familiarity with regulatory compliance frameworks, adept project management skills, and operational risk management.
• Certification in relevant cybersecurity disciplines (eg, CISSP, GIAC, CISA, CISM) is advantageous.

Key Responsibilities & Accountabilities:

• Collaborate with IT leadership and business units to devise and implement information security strategies that align with organisational objectives.
• Conduct ongoing risk assessments to pinpoint and mitigate security vulnerabilities, with a prioritisation on high-risk areas.
• Translate cybersecurity risks and mitigation strategies into non-technical terms for senior management, enabling well-informed decision-making.
• Supervise the development, deployment, and upkeep of cybersecurity policies and procedures, ensuring compliance with regulatory standards like GDPR.
• Generate quarterly cybersecurity briefings for senior management, delivering insights on recent threats and the prevailing risk landscape.
• Assess security incidents, formulate response strategies, and coordinate with technical incident response teams for prompt and effective resolution.