-
Evolve and enhance cybersecurity KPIs and reporting structures to effectively measure internal security performance.
-
Define and implement cybersecurity performance indicators for third-party vendors to monitor and assess their compliance.
-
Work cross-functionally with internal teams and external partners to enforce cybersecurity policies and ensure adherence to compliance standards.
-
Draft, update, and publish cybersecurity policies and procedures where required.
-
Lead and perform cybersecurity risk assessments to proactively identify and mitigate threats.
-
Manage internal and external security audits, including supplier assessments, and drive remediation of identified issues.
-
Design, implement, and monitor security controls to protect critical systems and data assets.
-
Prepare and deliver insightful cybersecurity reports, dashboards, and performance metrics to leadership and key stakeholders.
-
Provide timely updates on cybersecurity risks, incidents, and compliance status to meet regulatory and executive reporting requirements.
-
Stay informed of evolving cybersecurity threats, industry regulations, and best practices.
-
Bachelor’s or Master’s degree in Cybersecurity, Risk Management, Business Information Systems, or a related discipline.
-
Industry certifications such as CISM, CISA, CISSP, or CRISC are advantageous.
-
Minimum of 5 years of experience in cybersecurity governance, risk, and compliance.
-
Strong experience in consolidating data from multiple sources and producing high-quality reports.
-
Solid understanding of cybersecurity regulations, standards (e.g., ISO 27001, NIST), and governance frameworks.
-
Proven track record in conducting audits, risk assessments, and delivering compliance reporting.
-
Excellent analytical, communication, and stakeholder engagement skills.
-
Ability to work independently and collaborate effectively with multidisciplinary teams.