Strategic/Tactical
- Contribute to the overall IT strategy and operating plans;
- Contribute to corporate business planning as a member of the senior management team;
- Represent IT in the development of any frameworks related to cyber security and process at the enterprise level.
- Govern all delivery partners (Vendors) in the discharge of their service delivery obligations.
- Understand the Pattern of business activities and the underlying drivers & take appropriate actions to keep IT budget & costs within approved limits while meeting Business requirements on time, minimizing delivery risks & at the required quality
- Develop, implement, and monitor a strategic, comprehensive enterprise information security and IT risk management program.
- Work directly with the business units to facilitate risk assessment and risk management processes.
- Develop and enhance an information security management framework.
- Understand and interact with related disciplines through committees to ensure the consistent application of policies and standards across all technology projects, systems, and services.
- Provide leadership to the enterprises information security organization.
- Partner with business stakeholders across the company to raise awareness of risk management concerns.
- Assist with the overall business technology planning, providing a current knowledge and future vision of technology and systems.
Requirements
Knowledge of common information security management frameworks, such as ISO/IEC 27001, PCI-DSS and NIST.
Excellent written and verbal communication skills and high level of personal integrity
Innovative thinking and leadership with an ability to lead and motivate cross-functional, interdisciplinary teams.
Experience with contract and vendor negotiations and management including managed services.
Specific experience in Agile (scaled) software development or other best in class development practices.
Experience with Cloud computing/Elastic computing across virtualized environments