IT Security Lead

We are seeking an experienced IT Security Lead to oversee our organization’s cybersecurity initiatives. The IT Security Lead will be responsible for developing, implementing, and maintaining security policies, procedures, and controls to protect our information systems and data assets. The successful candidate will possess in-depth knowledge of cybersecurity principles, technologies, and best practices, along with strong leadership and communication skills.

Responsibilities:

Develop, implement, and maintain comprehensive cybersecurity policies, standards, and procedures to safeguard information systems and data assets.
Lead the planning, design, and implementation of security controls, including firewalls, intrusion detection/prevention systems, antivirus software, encryption technologies, and access controls.
Conduct regular security assessments, vulnerability scans, and penetration tests to identify and mitigate potential security risks and vulnerabilities.
Monitor security logs and alerts to detect and respond to security incidents and breaches in a timely manner.
Lead incident response efforts, including investigation, containment, eradication, and recovery activities.
Collaborate with cross-functional teams to ensure security requirements are integrated into all aspects of system development and operations.
Provide security guidance and support to project teams and business units, including risk assessments, security reviews, and security awareness training.
Stay updated on the latest cybersecurity threats, vulnerabilities, and technologies, and recommend appropriate security measures and countermeasures.
Manage relationships with external security vendors, consultants, and service providers.
Lead and mentor a team of cybersecurity professionals, providing guidance, coaching, and professional development opportunities.

What we are looking for:

In-depth knowledge of cybersecurity principles, technologies, and best practices.
Experience with security frameworks and standards such as ISO 27001, NIST Cybersecurity Framework, and CIS Controls.
Hands-on experience with security tools and technologies, including firewalls, intrusion detection/prevention systems, antivirus software, SIEM solutions, and vulnerability management tools.
Strong understanding of network security, cloud security, identity and access management, and encryption technologies.
Experience leading incident response and forensic investigations.
Excellent communication and interpersonal skills, with the ability to effectively communicate complex technical concepts to non-technical stakeholders.
Strong leadership, problem-solving, and decision-making skills.