Information Security Manager (Senior Specialist)

This position will have the overall responsibility for the company’s security management such as development and execution of our organization’s security strategy, governance framework, and compliance initiatives. Also, will be focuses on security planning, policy development, security awareness training, and internal/external audit coordination

Responsibilities:

• Develop and maintain the organization’s long-term information security strategy and roadmap.
• Identify emerging security risks and recommend appropriate strategic response.
• Establish, review, and update information security policies, standards, and procedures.
• Ensure policies are effectively communicated and enforced across all departments.
• Design and deliver security awareness programs tailored to different roles and risk levels.
• Conduct regular training sessions and phishing simulations to reinforce best practices.
• Conduct security audits for internal employees and external cooperative company.
• Monitor compliance with applicable laws, regulations, and frameworks.
• Prepare reports and dashboards on security posture, training completion, and audit results.
• Communicate effectively with senior leadership and board members regarding risk and compliance

Requirements:

• Bachelor’s degree in information Security, Computer Science, or related field
• 5+ years of experience in information security governance, risk management, or compliance.
• Have a strong background in security management, excellent planning skills, and a passion for fostering a strong security culture across the organization
• Familiarity with security standards and frameworks such as ISO 27001, NIST, or CIS Controls.
• Excellent written and verbal communications
• Professional certifications preferred: CISSP, ISO 27001 Lead Implementer/Auditor