- Company Name
- Celeros Flow Technology
- Job Title
- Chief Information Security Officer (CISO)
- Job Description
-
**Job Title:** Chief Information Security Officer (CISO)
**Role Summary:**
Senior executive responsible for defining, implementing, and maintaining company‑wide information security strategy, governance, and risk management. Leads security architecture integration, cloud security initiatives, incident response, and compliance with global standards, while partnering with executive leadership to align security objectives with business goals.
**Expectations:**
- Deliver a cohesive, risk‑oriented security framework that protects enterprise assets and supports innovation.
- Drive continuous improvement and readiness against evolving cyber threats.
- Provide clear, actionable recommendations to executive leadership, ensuring security is an enabler of business strategy.
**Key Responsibilities:**
- Develop and enforce organization‑wide information security and IT governance policies.
- Design and execute cloud security strategies, ensuring secure deployment and operations.
- Advise senior leadership on emerging threats, regulatory requirements, and risk mitigation.
- Collaborate with IT architecture, operations, and project teams to embed security in all technology solutions.
- Lead enterprise security awareness, training, and culture initiatives.
- Manage external and internal audits, compliance with ISO 27001, Cyber Essentials Plus, and other regulatory frameworks (GDPR, SOX, HIPAA, etc.).
- Coordinate incident response planning, investigations, and remediation.
- Oversee vendor and third‑party risk management.
- Prepare and administer security budget, staffing, and resource plans.
- Report on risk posture, compliance status, and strategic security initiatives to executives.
- Drive change management to adapt security practices to business evolution.
**Required Skills:**
- Advanced leadership and strategic planning in information security.
- Deep expertise in IT governance, cybersecurity frameworks, IPsec, zero‑trust architecture.
- Strong cloud security knowledge (AWS, Azure, GCP) and hands‑on experience.
- Proficiency in risk assessment, audit management, incident response, and threat intelligence.
- Excellent communication, stakeholder management, and executive presentation skills.
- Regulatory compliance experience (GDPR, SOX, HIPAA, PCI‑DSS, etc.).
**Required Education & Certifications:**
- Bachelor’s or Master’s degree in Information Security, Computer Science, IT, or related field.
- 8+ years of progressive information security experience, including 3+ years in a leadership role.
- **Mandatory Certifications:** CISSP, CISM, or CCSP (at least one).
- **Highly Desired:** CISA, ISO 27001 Lead Implementer/Lead Auditor, ITIL Foundation or higher, CompTIA Security⁺, GSLC, Microsoft Certified: Cybersecurity Architect Expert.