We are searching for a highly experienced and proactive Information Security Officer (ISO) to lead our organization’s security initiatives and safeguard our digital ecosystem. As the primary authority responsible for protecting our computing infrastructure, you will design, implement, and enforce comprehensive security policies and practices that shield our network, systems, and data from internal and external cyber threats. This role is crucial to maintaining a secure, reliable, and resilient IT environment in an era of increasing cybercrime and evolving digital risks.

The ideal candidate is a strong communicator, a strategic thinker, and a detail-oriented professional with deep expertise in information security frameworks and best practices. You must demonstrate advanced analytical capabilities, the ability to identify vulnerabilities, and the skills necessary to collaborate effectively with management and IT teams. Additionally, you will play a critical role in educating employees and driving organization-wide awareness regarding cybersecurity practices and compliance.

Key Responsibilities

1. Security Assessment & Vulnerability Management

• Conduct regular assessments to identify vulnerabilities and weaknesses within the organization’s current network infrastructure.
• Perform detailed penetration tests and security audits to uncover potential risks and ensure compliance with industry standards.
• Analyze findings and work collaboratively with IT teams to patch vulnerabilities and strengthen security protocols.

2. Policy Development & Implementation

• Develop, update, and enforce comprehensive information security policies, procedures, and guidelines.
• Create disaster recovery plans, incident response strategies, and data protection frameworks aligned with the organization’s goals.
• Ensure company-wide adherence to security policies, including acceptable use, data handling, and access control standards.

3. Monitoring & Threat Prevention

• Monitor network traffic, user activity, and security alerts to detect anomalies or suspicious behavior.
• Implement proactive measures to prevent data breaches, unauthorized access, and other security threats.
• Ensure ongoing compliance with security regulations such as GDPR, HIPAA, ISO 27001, NIST, and other relevant frameworks.

4. Incident Response & Documentation

• Lead the response to any security breaches, coordinating containment, investigation, and recovery efforts.
• Document security incidents thoroughly, prepare detailed reports, and evaluate the overall impact of breaches.
• Recommend enhancements to prevent future incidents and maintain readiness for emergencies.

5. Collaboration & Cross-Functional Support

• Work closely with executive leadership, IT teams, and department heads to align security strategies with business needs.
• Provide insights on emerging threats, evolving cybersecurity trends, and best practices for protecting digital assets.
• Assist with audits, compliance checks, and certifications as required.

6. Education & Employee Training

• Educate employees on cybersecurity awareness, safe online practices, and the importance of compliance.
• Conduct workshops, training sessions, and seminars on security tools, phishing prevention, and data protection.
• Establish a culture of security across all teams and departments.

Requirements & Qualifications

Educational Requirements

• Bachelor’s degree in Computer Science, Information Technology, Cybersecurity, or a related field.
• A Master’s degree or additional specialized training is an added advantage.

Certifications

Preferred certifications include:

• CISSP (Certified Information Systems Security Professional)
• CISM (Certified Information Security Manager)
• CEH (Certified Ethical Hacker)
• CompTIA Security+
• ISO 27001 Lead Implementer or Auditor

Professional Experience

• Prior experience in an information security or cybersecurity role, preferably within a corporate or enterprise environment.
• Hands-on experience with vulnerability assessment tools, penetration testing, and incident response.
• Strong understanding of security frameworks, including NIST, ISO, COBIT, and industry-specific compliance standards.

Technical Skills

• Solid knowledge of firewalls, intrusion detection systems, encryption protocols, and endpoint protection.
• Understanding of cloud security (AWS, Azure, GCP), network architecture, and access management.
• Ability to evaluate and manage security tools, monitoring systems, and threat-detection software.

Soft Skills

• Strong analytical and problem-solving skills.
• Exceptional communication skills with the ability to explain technical concepts to non-technical audiences.
• Excellent leadership, teamwork, and training capabilities.
• Highly organized, with strong attention to detail and a proactive mindset.

Why Join Us?

• Opportunity to lead mission-critical security initiatives.
• Work with a dedicated team of technology professionals.
• Exposure to modern cybersecurity tools, technologies, and enterprise-level challenges.
• Competitive salary, benefits, and career advancement opportunities.
• A supportive environment that values innovation, integrity, and professional growth.