Director: Information Security

Description:

Our client is looking for a dynamic and experienced Director: Information Security to lead their Information Security team in Sandton. If you have a passion for driving security strategies, ensuring compliance, and managing risk in a fast-paced, global organization, we want to hear from you. Key Responsibilities:

• Lead and manage all aspects of Information Security, Risk Management, and IT Security across the organization.
• Oversee the development and implementation of security processes, controls, and technologies to mitigate risks.
• Manage security audits, assessments, and work closely with external auditors to ensure compliance with industry frameworks and standards such as SSAE 18, PCI DSS, and ISO 27001.
• Partner with local and regional regulators, including the National Credit Regulator and the Information Regulator, to ensure compliance with local laws and regulations.
• Lead cross-functional teams, delivering innovative solutions and security measures.
• Negotiate and manage contracts and vendors, including managed services.
• Advise senior executives on security strategy and serve as a hands-on contributor on technology deployments and other security initiatives.
• Develop and report on security metrics (dashboards, KPIs, KRIs) for continuous improvement.

Qualifications and Experience:

• 12+ years of extensive experience in risk management, information security, and IT, with at least 10 years in Information Security Management.
• Degree in Business Administration or a technology-related field.
• Professional security certifications in Information Security / Cyber Security (CISSP, CISM, CISA, CCSP) are highly desirable.
• Strong leadership, project management, and time management skills with an ability to solve complex problems.
• Proven ability to operate in a virtual, global matrix organization.
• Experience in designing, developing, and implementing security controls and technologies, including Identity Management, Vulnerability Management, DLP, IDS/IPS, FIM, and Incident Response.
• Working knowledge of Windows and Linux operating systems, TCP/IP networks, and web application security controls.

Location: Sandton

Apply now!

For more IT jobs, please visit www.networkrecruitment.co.za

If you have not had any response in two weeks, please consider the vacancy application unsuccessful. Your profile will be kept on our database for any other suitable roles/positions.

For more information contact:
Reinie Du Preez
Senior Specialist Recruitment Consultant
E-mail: rdpreez@networkrecruitment.co.za

Requirements:

• Lead and manage all aspects of Information Security, Risk Management, and IT Security across the organization.
• Oversee the development and implementation of security processes, controls, and technologies to mitigate risks.
• Manage security audits, assessments, and work closely with external auditors to ensure compliance with industry frameworks and standards such as SSAE 18, PCI DSS, and ISO 27001.
• Partner with local and regional regulators, including the National Credit Regulator and the Information Regulator, to ensure compliance with local laws and regulations.
• Lead cross-functional teams, delivering innovative solutions and security measures.
• Negotiate and manage contracts and vendors, including managed services.
• Advise senior executives on security strategy and serve as a hands-on contributor on technology deployments and other security initiatives.
• Develop and report on security metrics (dashboards, KPIs, KRIs) for continuous improvement.

• 12+ years of extensive experience in risk management, information security, and IT, with at least 10 years in Information Security Management.
• Degree in Business Administration or a technology-related field.
• Professional security certifications in Information Security / Cyber Security (CISSP, CISM, CISA, CCSP) are highly desirable.
• Strong leadership, project management, and time management skills with an ability to solve complex problems.
• Proven ability to operate in a virtual, global matrix organization.
• Experience in designing, developing, and implementing security controls and technologies, including Identity Management, Vulnerability Management, DLP, IDS/IPS, FIM, and Incident Response.
• Working knowledge of Windows and Linux operating systems, TCP/IP networks, and web application security controls.