Information Security & Data Protection (ISDP) Manager, IT Permanent

We’re looking for a candidate to fill this position in an exciting company.

• Work with Develops corporate Information assurance policy, standards and guidelines.
• Contribute to the development of organizational strategies that address the evolving business risk and information control requirements.
• Drives adoption of and adherence to policies and standards through the provision of expert advice and guidance in order to ensure architectural principles are applied, requirements are defined, and rigorous security testing is applied.
• Monitors environmental and market trends and pro-actively assesses impact on business strategies, benefits and risks.
• Seeks to fully address business needs, provide analysis and suggest problem resolution measures. Ensure proposed solutions are properly understood and appropriately exploited, supported by enhancing personnel’s capabilities and effectiveness.
• Oversees the provision of specialist advice by others, consolidates expertise from multiple sources, including third party experts, to provide coherent advice to further organizational objectives.
• Supports and promotes the development and sharing of specialist knowledge within the organization.
• Sets the quality strategy and policies for approval and adoption by organizational management and secures commitment to it from executive leadership.
• Determines the extent to which the quality policy meets the organization’s needs and objectives and reviews it as necessary.

• Min 5 years in privacy and/or compliance-related risk management positions and information security positions.
• A BA or BS degree in information security, computer science or a similar field. Alternatively, a bachelor’s degree or J.D. or the equivalent work experience in privacy, compliance, information security, auditing, or a related field will often be considered.
• Professional Certifications: One or more International Association of Privacy Professionals (IAPP) certifications such as CIPP/E, CIPP/US and/or CIPM may be required. ISACA certifications in governance and risk management (e.g. CRISC, CGEIT, etc.) can sometimes be preferred.
• Solid experience in evaluating cybersecurity controls and providing guidance to remediate issues
• Good knowledge of technologies related to Network and Computing Security is a must
• Knowledge of country’s laws, rules and regulations on information security, data protection and privacy
• Logistics business acumen and knowledge of Express industry preferred