1. Help identify and contain risks related to information management, and foster a compliance culture.
2. Provide expert recommendations and solutions to complex cybersecurity and data governance challenges.
3. Conduct cybersecurity risk assessments to identify, prioritize, and mitigate organization-wide risks.
4. Coordinate the development and continuous improvement of cybersecurity and data governance procedures.
5. Lead response and resolution of business and technical cybersecurity issues across functions.
6. Lead advanced threat modeling, vulnerability management, and security architecture assessments.
7. Define and govern data classification, access controls, and lifecycle policies.
8. Lead enterprise risk assessments, mitigation strategies, and cybersecurity audits.
Requirements
Bachelor’s degree in computer science, Information Technology, or a related field. Professional security certifications (e.g., CompTIA Security+, ISO 27001, CISSP) are preferred.
A. Minimum Experience:
Minimum of 10 years of experience in cybersecurity, data governance, or related domains, with proven leadership in regulatory compliance and risk management.
B. Competencies (Knowledge, Skills & Abilities):
Deep expertise in cybersecurity governance frameworks (e.g., NCA, ISO 27001, NIST).
Strong command of data governance, protection, and regulatory requirements (e.g., PDPL, CSA STAR).
Extensive experience in managing complex security risks, compliance mandates, and technical advisory roles.
Proven ability to influence senior leadership and shape cybersecurity strategies aligned with business goals.
Effective communicator capable of bridging technical and business perspectives.
Strong leadership and mentoring skills, with experience managing cross-functional initiatives.
Strategic thinker with demonstrated success in developing long-term security and data governance plans.
Advanced proficiency in cybersecurity architecture, GRC tools, and risk analytics platforms.
