Director, Information Security (CISO)

Purpose of the position

We are looking for an ambitious, experienced, and visionary Director Information Security (CISO), to strengthen our MacGregor IM Management Team (IMMT). The purpose of the position is to develop and implement an information security program that protects an organisation's data and systems. You will be responsible for managing risk and ensuring that the organisation's security posture is aligned with its business objectives. You will work closely with other senior executives, such as the VP Information Management, the IMMT members as well as the MacGregor Management Team (MET), to ensure that the organisation's security program is effective and efficient. 
 

Main tasks and responsibilities

Technology

• Setting the system- and application technology security standards and guidelines
• Contributing to the selection of the new IT technologies in our system environment and ensuring that agreed security standards are met

Development

• Developing and implementing security policies and procedures
• Proactively manage cybersecurity risks by identifying and assessing risks, developing and implementing mitigation strategies, and monitoring the organisation's security posture on an ongoing basis. 
• You will together with the executive management determine acceptable levels of risk for the organisation. 
• Overseeing security operations, such as monitoring and incident response
• Staying up-to-date on the latest cybersecurity threats and trends
• Staying up-to-date on the cybersecurity regulations and secure MacGregor compliance
• You create and manage the Information Security Governance model and Cyber as well as Information Security Strategy

Support

• Educating and training employees on cybersecurity best practices
• Cooperate with MacGregor IM Services & Infrastructure, Enterprise Architecture and Solution Architecture domains to secure trouble free operations of the applications, integrations and quality IT support services 

Leadership

• Communicating with the board of directors, MET and other stakeholders about the organisation's security posture
• Leading security staff and teams to maintain high performance and engagement
• Member of MacGregor IM leadership team (IMMT).

What you’ll need to succeed

• B.Sc. or M.Sc. in Business administration, Information technology or equivalent 
• 8+ years of experience in a combination of risk management, information security and IT 
• Comprehensive knowledge of security and control frameworks, such as ISO 27001-2, CobiT, COSO and ITIL. 
• Professional certification, such as a CISSP, CISM, CISA or other information security credentials
• Very good understanding of legal regulations like the General Data Protection Regulation (GDPR) as well as Cloud Act
• Project management experience is highly appreciated
• Knowledge of Google Cloud, Google Workspace as well as AWS security will be considered as advantages

Skills and experience that would help you succeed in this role:

• Critical thinking with strong problem-solving skills
• Excellent interpersonal and collaborative skills
• Ability to communicate security and risk-related concepts to both technical and non-technical audiences
• Ability to motivate and lead cross-functional and interdisciplinary teams toward a common goal
• Excellent verbal and written skills in English.

Interested to join?

In today's increasingly interconnected world, this role has become more critical than ever before. Cyberattacks are becoming more sophisticated and frequent, and the cost of a data breach can be devastating for an organisation. You will play a vital role in protecting our organisation from these threats and helping us to maintain a competitive advantage.

If you are excited about this opportunity, please submit your application.