Manager - Information Security

Manager - Information Security

Responsibilities:

- Responsible for overseeing the design and development of the overall information security architecture for TPL

- Design and develop the overall information security architecture for TPL. This includes creating a security framework that aligns with business goals, industry best practices, and regulatory requirements.

- Conduct risk assessments to identify potential security risks and vulnerabilities in TPL's IT infrastructure.

- Develop and implement risk mitigation strategies and security controls to protect against cyber threats.

- Design and develop TPL's information security architecture, aligning it with the business goals and objectives of TPL.

- Create and maintain a comprehensive security blueprint that addresses the unique challenges and requirements of the construction industry.

- Collaborate with the IT and security teams to formulate a robust security strategy that encompasses preventive, detective, and corrective security measures.

- Develop and update information security policies, standards, and procedures. Ensure that these policies align with industry standards and regulatory requirements.

- Design and implement secure network architectures to protect TPL's data and communication channels from unauthorized access and cyberattacks.

- Plan and prioritize security initiatives based on risk assessments and compliance requirements.

- Implement data encryption, access controls, and data classification to protect sensitive information from unauthorized access or disclosure.

- Conduct regular risk assessments to identify potential security vulnerabilities and threats specific to construction operations, projects, and systems.

- Propose and implement risk mitigation strategies to reduce the likelihood and impact of security incidents.

- Evaluate and recommend security technologies and solutions that align with TPL's security architecture and meet business needs.

- Lead the implementation and integration of security solutions, ensuring they are configured and deployed effectively.

- Develop and enforce security policies, standards, and guidelines that govern the use of information technology and systems within TPL.

- Ensure compliance with applicable industry regulations and best practices.

- Develop and implement incident response plans to address cybersecurity incidents effectively. Coordinate with IT teams and relevant stakeholders to contain and mitigate the impact of security breaches.

- Establish incident response protocols and coordinate the response to security incidents, including data breaches and cyber-attacks.

- Conduct post-incident reviews to identify lessons learned and areas for improvement.