Information Systems Security Manager (ISSM)

Role Overview

The Information Systems Security Manager (ISSM) is responsible for overseeing the security of an organization’s information systems and ensuring compliance with industry regulations, company policies, and best practices. The ISSM plays a critical role in managing risks, implementing security controls, and leading a team to protect sensitive information from internal and external threats.

Key Responsibilities

• Develop, implement, and maintain information security policies, procedures, and guidelines.
• Ensure alignment with industry standards (e.g., ISO 27001, NIST, GDPR, CMMC, or local regulations)

• Identify, assess, and mitigate risks associated with the organization’s information systems.
• Conduct regular vulnerability assessments and penetration tests.

• Lead the development of incident response plans and procedures.
• Oversee investigations of security incidents and implement corrective measures.
• communication with customers on incidents impacting them

• Ensure compliance with legal, regulatory, and contractual security requirements.
• Prepare for and manage internal and external security audits.
• lead and chase stakeholders inside the company to feed all security and compliance documents asked by regulators and customers.

Training:

• Provide training and awareness programs to employees on security best practices.

Technical Oversight:

• Oversee the implementation of technical security solutions such as firewalls and encryption technologies.
• Ensure and double check, secure configuration and patch management of IT systems.

Collaboration with Stakeholders:

• Work closely with IT, operations, legal, and management teams to integrate security into organizational processes.
• Provide security guidance during project planning and system development.

Monitoring ad reporting:

• Monitor systems for unusual activity and potential threats.
• Report on security metrics, trends, and incidents to the global system director

Emerging threat Management:

• Stay updated on the latest cybersecurity threats, trends, and technologies.
• Propose proactive measures to address emerging security challenges with the global system director.

Qualifications and skills

• Bachelor’s degree in Information Security, Computer Science, or a related field (Master’s degree preferred).

• 5+ years of experience in information security, risk management, or related roles.
• Proven track record in managing security programs and teams.

• Certified Information Systems Security Professional (CISSP)
• Certified Information Security Manager (CISM)
• Certified Ethical Hacker (CEH)
• GIAC Security Essentials (GSEC)

• Strong knowledge of security frameworks (e.g., NIST, ISO 27001, COBIT).
• Familiarity with SIEM tools, firewalls, and antivirus systems.
• Proficiency in conducting risk assessments and implementing security controls.

• Excellent leadership and team management abilities.
• Strong analytical, problem-solving, and decision-making skills.
• Effective communication and interpersonal skills to collaborate with diverse stakeholders.

Join Us!

If you want to meet this challenge, in a human-sized company, join us!