Description
Be a part of the Cyber Security Operation team, which is taking an active role in operating the security operations of the company. The team is responsible for implementing, monitoring and enhancing our security controls, writing security policies/standards & guidelines, and organizational security awareness.
Responsibilities:
Analyze and respond to security incidents and breaches Research and recommend security solutions as needed Produce security reports pertaining to vulnerability metrics found in testing efforts Practice and improve the organization’s Information Security IR policies, playbooks, and guidelines by evaluating the organization’s outcomes. Identifying problems, evaluating trends, and anticipating requirements Be also a part of our Security Awareness program, preparing general and team-dedicated trainings, quizzes, and campaigns to educate our fellow Kalturians on how to secure themselves and the organization Meet company security compliance by taking part with our security internal audits, clients questionnaires, assessing cloud security vendors compliance.
Education and Certification:
- Bachelor’s degree in Computer Science, Information Technology, or a related field (Master’s degree preferred).
- Industry-recognized certifications such as CISSP (Certified Information Systems Security Professional), CISM (Certified Information Security Manager), or equivalent.
Experience:
- Minimum of 8-10 years of progressive experience in information security.
- Proven experience in a leadership role, preferably as a CISO or in a senior information security management position.
Technical Skills:
- Deep understanding of information security principles and best practices.
- Experience with risk management, vulnerability assessment, and incident response.
- Knowledge of security frameworks and standards (ISO 27001, NIST, etc.).
Leadership and Management:
- Strong leadership and people management skills.
- Ability to develop and implement information security policies and procedures.
- Experience in building and leading high-performance security teams.
Communication:
- Excellent communication skills, both written and verbal.
- Ability to communicate complex security concepts to non-technical stakeholders.
- Experience in presenting to executive leadership and board of directors.
Regulatory Compliance:
- Knowledge and experience in ensuring compliance with relevant data protection and privacy regulations (GDPR, HIPAA, etc.).
- Strategic Planning:
- Ability to develop and execute a strategic vision for information security aligned with overall business goals.
Incident Response:
- Proven experience in developing and implementing incident response plans.
- Ability to lead and coordinate responses to security incidents.