Information Security Lead Job Description Template
Our company is looking for a Information Security Lead to join our team.
Responsibilities:
- Review design and architectural design documentation and data flow diagrams and provide security requirements and input;
- Scope, arrange and support security testing, including penetration testing;
- Support security and risk management reporting and risk related actions and follow up;
- Develop information security processes and procedures alongside business and IT stakeholders and its embedding;
- Review new and existing supplier and partner contracts and perform regular assurance activities to validate supplier security posture;
- Performance of audit related activities internally and externally to the organisation, as well as preparation to receive external audits;
- Attend business governance meetings as required representing the Information Security team.
Requirements:
- Several years of Security Engineering/Architectural experience;
- Excellent communication skills and the ability to clearly and concisely articulate information security risks to business and technical teams;
- Knowledge of ISF, ISO 27001, SOGP, PCI-DSS and GDPR; and;
- Experience in Security Governance and Security Assurance;
- Excellent analytical skills and ability to solve complex problems;
- Strong interpersonal skills and be approachable for all members of staff;
- Previous management experience in information security;
- Ability to communicate effectively at all levels within the organisation;
- Ability to manage third party security vendors and be involved in the procurement process.