ClearTrail Technologies - Director - Information Security

About the Role:.

As Director-Information Security, you will be responsible for overseeing the information security function within our organization.

This leadership role requires a strong technical background, as well as a strategic mindset to develop and implement comprehensive security policies and procedures.

Roles & Responsibilities:

Strategic Planning:

- Develop and implement a comprehensive enterprise information security strategy.

- Align Security initiatives with business objectives to ensure effective risk management.

- Work with IT for identification, purchase, and implementation of security products.

Risk Management:

- Conduct risk assessments and manage IT-related security risks.

- Identify potential threats and vulnerabilities through ongoing monitoring.

- Establish and maintain a robust security infrastructure, including firewalls, intrusion detection systems, and encryption technologies.

Policy Development:

- Create and enforce information security policies, standards, procedures and guidelines.

- Ensure compliance with relevant laws and regulations.

- Collaborate with various internal and external stakeholders to identify and mitigate security risks and vulnerabilities.

Incident Response:

- Oversee incident response planning and manage the investigation of security breaches.

- Coordinate with legal and disciplinary teams when necessary.

Team Leadership:

- Build and Manage a team of security professionals.

- Provide regular updates on the security programs status to senior management and the board of directors.

Security Awareness:

- Develop and implement security awareness training programs for employees.

- Promote a culture of security within the organization.

Skills and Qualifications:

- 15-18 years of experience, with strong understanding of information technology and security having one or more of security certifications like CISSP, CISM, CISA.

- Well versed with common information security management frameworks, such as ISO/IEC 27001 and NIST.

- Extensive knowledge of security technologies and processes.

- Strong understanding of business and risk management.

- Excellent communication skills to articulate security issues to both technical and non-technical staff.

- Leadership experience in managing security teams and resources.