Overview:
Cybersecurity Manager is responsible for managing a security team in effective IT security compliance programs involving activities such as reviewing and development of security policies, processes or procedures and guidelines, ensuring policy compliance and conducting security reviews.
In addition to the above, this role also involves cybersecurity services management and enhancement as part of the service offering development. This role will also be heavily involved in tender participation, providing security solution consultation and assist the Assistant Director on resource planning.
Responsibilities:
- Develop new cybersecurity services and enhance current ones as part of continual service offering improvement.
- Assist the Solution Architect team by participating bid and tender solutioning, providing input on the right services to be offered for all requirements related to cybersecurity.
- Establish third-party engagement with principles and distributors to expand cybersecurity solution options.
- Manage a diverse team of professional resources providing Information Security and compliance support for customers, including managing matrix reporting relationships and consultants.
- Effectively assess Information Security resource allocation and manage resource productivity, prioritization of work and individual goals/objectives, including performing bi-annual and annual performance evaluations.
- Establish and enhance cyber Threat Intelligence management, including methodologies for threat analysis, intelligence dissemination and vulnerability management services.
- Design and implement the cyber Threat Intelligence strategy, conducting cybersecurity reviews and proposing vulnerability management recommendations.
- Communicate the threat landscape, actor tactics, active campaigns, and risks to business leadership and IT teams.
- Manage operational initiatives and capital planning projects, as deemed necessary by the Senior Management.
- Produce/deliver management level presentation to higher management of both internal team and customers.
- Perform security related duties as needed for risk management, audit and compliance.
- Work closely with and support the Senior Management to maintain the Information Security Compliance Program for internal infrastructure and customers.
- Manage and support emerging frameworks and processes related to security for cloud computing, including developing and managing security operational processes/procedures.
- Develops and/or interprets information security policies, standards and procedures and manages the maintenance of revisions and updates.
Requirements:
- Minimally Diploma/Degree in Information Technology or equivalent.
- 8 to 10 years of experience with a broad range of exposure to Information Security aspects, including security controls, baseline standards, general business planning, system analysis, system development, maintenance and application development.
- 6+ years of experience with information security, regulatory compliance and risk management concepts.
- 5+ years’ experience with managing team(s) and project(s) and with working in matrixed high-performance teams.
- General understanding of networking and communication techniques including WANs, LANs, Internet, Intranet, protocols, such as TCP/IP and their impact on security.
- Proficient in cyber threat intelligence frameworks e.g. Mitre ATT&CK, Cyber Kill Chain.
- Certifications like Certified Information Systems Security Professional (CISSP), Certified Information Systems Auditor (CISA), Certified Information Security Manager (CISM), Certified in the Governance of Enterprise IT (CGEIT) or others are an added advantage.
- Strong communication and stakeholder management skills.