Digital Security Strategist

Senior Cybersecurity Professional

Leading cybersecurity strategy, risk management, and compliance initiatives is crucial for protecting digital assets. This role seeks a seasoned professional to develop and implement comprehensive cybersecurity frameworks, conduct vulnerability assessments, and ensure security best practices are implemented.

About the Role

• Develop and implement enterprise-wide cybersecurity strategies and policies to safeguard digital assets.
• Lead the formulation and periodic review of the organization's cybersecurity vision, roadmap, and risk posture in alignment with business priorities.
• Serve as primary advisor to executive leadership on information and cyber risk matters.

Key Responsibilities:

1. Cybersecurity Strategy & Operations:

• Develop and implement enterprise-wide cybersecurity frameworks and incident response plans.
• Conduct regular vulnerability assessments, penetration testing, and security audits.
• Ensure security best practices for servers, networks, cloud, and endpoints are implemented.

Technology - Risk Management:

• Establish and continuously refine technology risk management framework integrated with the organization's enterprise risk strategy.
• Identify, assess, and prioritize key risks related to digital systems, third-party services, and data infrastructure.

Business Continuity:

• Participate in development and implementation of IT disaster recovery and business continuity plans.
• Ensure proper maintenance, safekeeping, backup, and protection of all critical IT systems within normal operation modes in case of a disaster.

Leadership Oversight and Cross-functional Collaboration:

• Evaluate and steer performance of technology functions in meeting IGCR goals and mandates.
• Ensure security and compliance are embedded across all digitalization projects and IT operations.

Security Culture, Awareness & Training:

• Develop enterprise-wide security awareness and behavioral change programs.
• Act as thought leader and internal ambassador for secure digital transformation.
• Promote a security-first culture across the organization.

Technology - Incident Management & Response:

• Establish protocols for detecting, responding to, and recovering from security incidents.
• Collaborate with internal teams and external agencies to handle cyber incidents effectively.

Technology - Vendor & Third-Party Risk Management:

• Lead due diligence and risk reviews for all IT and cloud-based vendors.
• Enforce third-party security requirements and monitor ongoing compliance with data protection obligations.

---