Chief Information Security Officer (CISO)

Company Description

Welcome to Sansaone, a dynamic force in the realm of ICT talent acquisition. We are dedicated to excellence and focused on connecting outstanding professionals with forward-thinking organizations. Our strategic recruitment solutions are tailored to build transformative teams in the Information and Communication Technology sector. As your trusted partner, we aim to foster strong collaborations between exceptional professionals and innovative organizations.

Job Description:

We are looking for an experienced and driven Chief Information Security Officer (CISO) to lead our team. In this role, you will be responsible for developing, implementing, and enforcing our company's information security policies and strategy. You play a crucial role in protecting our data and systems against internal and external threats.

Responsibilities:

• Developing and implementing a comprehensive information security policy and strategy.

• Leading the security team and fostering a culture of security awareness.

• Identify, assess, and mitigate security risks.

• Oversee the implementation and management of Identity and Access Management (IAM) systems, including user provisioning, authentication, and authorization processes.

• Managing and optimizing the CyberArk environment for privileged access management.

• Conducting regular security audits and penetration tests.

• Responding to security incidents and conducting forensic investigations.

• Collaborate with IT and other departments to integrate security measures into business processes.

• Stay up-to-date on the latest security trends, threats, and technologies.

• Report to senior management on the status of information security.

Requirements:

• Bachelor's degree in Computer Science, Cybersecurity or a related field (Master's degree is a plus).

• In-depth knowledge of Identity and Access Management (IAM) principles and practices.

• Experience implementing and managing CyberArk or other privileged access management solutions.

• Strong knowledge of security standards and regulations, such as ISO 27001, NIST, and GDPR.

• Excellent communication and leadership skills.

• Certifications such as CISSP, CISM, CISA, or similar are a plus.