Job Title: Senior Security Information Manager
Relocation: Relocation assistance is available for the right candidate.
Work Environment: Hybrid (on-site and remote flexibility)
Sponsorship: Not Available
Vendors: No, No C2C
Job Overview:
On behalf of our client, a leading retail company, we are seeking a highly technical and experienced Senior Security Information Manager to lead their cybersecurity efforts. This hybrid role offers a combination of remote work and on-site collaboration. You will be responsible for developing and implementing robust security strategies, managing threats and vulnerabilities, and ensuring the digital infrastructure remains secure from potential cyber-attacks. As a senior leader within the IT team, you will work closely with various departments to secure sensitive data and maintain the integrity of the systems.
Key Responsibilities:
- Lead the design, implementation, and management of cybersecurity strategy, ensuring alignment with business goals.
- Oversee threat monitoring, detection, incident response, and vulnerability management for all company systems.
- Manage and mentor a team of cybersecurity professionals, providing guidance and technical expertise.
- Collaborate with IT, compliance, and other departments to ensure security policies are integrated across the organization.
- Regularly assess risks and recommend mitigation strategies, including security patches and upgrades.
- Manage and respond to security breaches, ensuring the minimization of risk and impact on the business.
- Ensure compliance with industry standards and regulatory requirements.
- Stay current with emerging cyber threats, technologies, and best practices.
- Report on security posture and performance to senior leadership.
Requirements:
- Bachelor’s degree in Information Technology, Cybersecurity, or a related field.
- 7+ years of experience in cybersecurity, with at least 3 years in a management or leadership role.
- Extensive knowledge of information security frameworks.
- Strong experience with security incident response, threat detection, and risk assessment methodologies.
- Proficient with security technologies such as firewalls, intrusion detection/prevention systems (IDPS), SIEM platforms, and endpoint protection solutions.
- Experience with cloud security, network security, and data protection.
- Strong understanding of compliance requirements
- Certifications are not required, but relevant experience is essential.
- Excellent problem-solving and communication skills.