Browse by first letter of the job description
Please help us to keep this site free by liking us on Facebook. Click on the Facebook logo and click `like`-thanks
"The database of free job descriptions"
The Chief Information Security Officer (CISO) is responsible for all Information Security strategy, policies, and
execution across the company. The CISO will lead and manage information security initiatives that will strengthen
governance and processes, and will ensure the right resource and tools are in place, to increase the business’
ability to proactively and reactively deal with Information Security threats and incidents.
Information Security specific qualifications: CISSP, CISM (desirable)
MSc/PhD - Information Security/Risk Management or equivalent(desirable)
Relevant management qualifications (desirable)
Conversant in Information Technology Infrastructure Library (ITIL) processes, procedures, and roles – an ITIL qualification is desirable
Knowledge, Skills & Competencies:
Include specific skills required for the role as well as behavioural competencies
Developed vetting security clearance : ideally have, or be able to achieve, sufficient security clearance to enable the post holder to liaise with the relevant security services effectively.
In-depth understanding of the technologies and architectures supporting information security protection
Proven track record of operating in time critical, diverse corporate environments
Extensive practical experience developing/publishing/maintaining controls and policies for complex organisations
Proven history managing successful high performing teams, budgets and service demand
Ability to set strategic direction and lead programmes of change
Highly effective and creative problem-solving skills
Excellent stakeholder management and influencing skills, at the most senior levels within the organisation
Credible and effective enough to represent the company in external working groups on Information Security
Free Job description Chief Information Security Officer
4) Assess existing security initiatives and identify new requirements and prioritise those in line with risk and budget requirements.
5) Develop and maintain information security policies and monitor compliance with security policies, controls and legislation.
6) Manage information security due diligence, auditing and monitoring of vendors and suppliers and undertake third-party security audits and intrusion and penetration tests.
7) Manage the 24x7 Security Incident Management process. Oversee incident response planning and investigation of security breaches.
8) Establish internal security awareness and training programs and drive changes in staff behaviour to reduce overall risk to the organisation.
9) Maintain current knowledge of the information security field and the changing threat landscape track new developments in rapidly changing technologies and create and develop a personal network of
CISOs in other organizations and industries to act as a source of information.
10) Leverage new security technology to drive solutions back to the business.
11) Present and pitch security programs to the audit committee and executive
12) Overall accountability for the IS talent pool, ensuring the business attracts and retains the best talent and has the right skills, at the right level to meet the demand – working with individual teams to
The role will reduce and mitigate information security risk to a tolerable level for the organisation.
This role is responsible for ensuring information assets
and technologies are protected and will be expected to brief and advise the Executive Board.
1) This role is accountable for all aspects of information security
2) Accountable for the existing team of IS professionals ensuring individual and team performance and
3) Drive collaboration externally and internally with various departments.