Information Security Officer

We're actively looking for aSenior Information Security Officer (Lahore-Onsite)

Client Company Introduction:

Our client is a subscription e-commerce company for consumer tech. Each and every day, we set out to create a new standard for connectivity and access to the best technology tools for all. Established in 2016, as the first company of its kind, our team has grown to over 130 employees. Over the last 5 years they have managed over 1 million service subscriptions across 25 cities, reaching 70% of GCC population and served over 300K users, making us the largest device services platform in the GCC.

Job Summary:

The Senior Information Security Officer (SISO) is responsible for establishing and maintaining the enterprise vision, strategy, and program to ensure information assets and technologies are adequately protected. The SISO will lead the organisation in identifying, developing, implementing, and maintaining processes to reduce information and information technology (IT) risks.

Job Purpose:

The primary duty of this role is to oversee and assess the risks that the enterprise faces, and to implement the necessary security technologies and processes to minimize these risks to the organization.

Job Description:

Leadership and Strategy Development:Develop, implement, and maintain a comprehensive information security strategy for the company. Ensure the strategy is aligned with business objectives and complies with regulatory requirements especially from UAE and KSA regions.

Risk Management:Identify, evaluate, and report on information security risks in a manner that meets compliance and applicable regulatory requirements. Develop and implement risk management frameworks and methodologies that are aligned with the company's business objectives.

Policy and Governance:Establish and maintain an information security governance framework. Develop, implement, and enforce information security policies, procedures, and standards in coordination with other relevant stakeholders.

Incident Management:Lead the response to security incidents and breaches, ensuring effective containment, investigation, and resolution. Conduct post-incident analysis to identify root causes and improve future response efforts.

Compliance and Audit:Ensure compliance with relevant legal, regulatory, and contractual requirements of the company. Coordinate security audits and assessments, and address audit findings in collaboration with other Teams.

Security Operations:Oversee the management and operations of security technologies, such as firewalls, intrusion detection/prevention systems, and endpoint protection performed by other IT Teams. Ensure the continuous monitoring of security threats and vulnerabilities.

Awareness and Training:Develop and implement a security awareness and training program for employees. Promote a culture of security awareness across the organisation.

Collaboration:Work closely with other distributed IT teams including Software Development, Architecture, Data Protection, Operations, etc. Collaborate effectively with cross-functional teams including Finance & Analytics, Operations, Products, etc. to integrate security into all aspects of the organisations operations.

Vendor Management:Evaluate and manage relationships with security vendors and service providers. Ensure third-party compliance with security standards and policies.

Key Competencies/Skills:

Bachelor's Degree in Computer Science, Computer Engineering, Information Security or related fields. Advanced degree preferred.

Proven track record of 5+ years in Information Security preferably in FinTech/E-commerce industry.

Certifications in CISA/CISM, ISO 27001 lead implementer would be a plus.

Strong knowledge of information security management frameworks (e.g., ISO/IEC 27001, NIST, SOC-2).

Solid experience in implementing and monitoring the security protocols in AWS Cloud, CRM, ERP and Web Applications.

In-depth understanding of network and application security, including threat intelligence, vulnerability management, and security Monitoring.

Excellent leadership and communication skills.

Strong problem-solving and analytical abilities.

Ability to manage and prioritise multiple projects.

Experience:5+ years

Job Location:Lahore - Onsite

Timings:10AM - 7PM (Mon - Fri)

Salary:Market Competitive (Paid in USD)

Benefits:Tax Free Salary

About HR Ways:

HR Ways is a Technical Recruitment Firm helping software houses and IT Product companies internationally and locally to find IT Talent. HR Ways is engaged by 150 + Employers ranging from the worlds biggest SaaS Companies to the most competitive Startups. Find out more atwww.hrways.co#J-18808-Ljbffr