IT and Security Leader/Manager
Job Summary
Job Description
This IT and Security Leader/Manager position requires 8-12 years of experience in leading IT systems and security departments. Responsibilities include ensuring IT systems align with business objectives and adhere to regulatory and compliance standards (ISO, SOC2, GDPR, HIPAA, PCI-DSS). The role involves conducting audits, risk assessments, managing security policies, data backup, disaster recovery, business continuity planning, security awareness training, incident response, and vendor risk management. Collaboration with various departments (IT, HR, Legal) is crucial. The ideal candidate will possess expert knowledge of Office 365, Intune, IT networking, cloud administration (Azure, AWS), and hands-on experience with security compliance tools. Compliance with security standards and frameworks is paramount.
Must have:
- 8-12 years IT & Security experience
- Expert in Office365, Intune
- Cloud admin (Azure, AWS)
- Security compliance knowledge
- Risk management expertise
- Compliance with ISO, SOC2, GDPR, HIPAA, PCI-DSS
Good to have:
- GRC tools experience
- CISSP, CISA, CISM, CRISC certifications
9 skills required
Job Details
This position is for 8-12 years' experience IT and Security leader ensures that the organization’s IT systems are configured as per business objective and processes adhere to regulatory, security, and compliance standards. This role involves conducting audits, risk assessment, managing security policies, ensuring adherence to industry regulations (e.g., ISO (at least 3 Information Security related), SOC2, GDPR, HIPAA, PCI-DSS), and working with various departments to maintain a secure and compliant IT environment.
Technical Skills:
Must have skills to lead systems and security department and oversee the effective operation and evolution of our IT systems.
Expert knowledge in Office365, Intune and Other office Apps.
Excellent knowledge in IT networking, cloud administration (Azure, AWS).
Must be very clear in IT regular operations and information security posture in place and effective.
Hands-on tools experience for security compliance, risk management, and vulnerability assessment.
Manage data backup, disaster recovery, and business continuity plans.
Compliance Management:
Ensure compliance with applicable security standards, frameworks, and regulations (e.g., ISO 27001, NIST, SOC2, GDPR, HIPAA, PCI-DSS).
Conduct regular internal audits of IT systems, applications, and processes to identify potential compliance issues.
Develop and maintain IT security policies and procedures aligned with industry best practices.
Assist in the preparation and submission of compliance reports to regulatory bodies as required.
Risk Management:
Identify, assess, and mitigate IT security risks.
Work with IT teams to implement risk mitigation strategies.
Monitor emerging security risks and implement appropriate controls.
Familiarity in third-party risk and compliance assessments.
Security Awareness and Training:
Develop and deliver security awareness training for employees to ensure a strong security culture.
Ensure that security policies and procedures are communicated and enforced across the organization.
Incident Response and Investigation:
Support incident response activities by helping investigate security incidents and breaches.
Conduct forensic investigations and recommend actions to prevent future incidents.
Vendor and Third-Party Risk Management:
Evaluate third-party vendors and contractors to ensure their compliance with organizational security and privacy standards.
Manage security agreements and ensure ongoing monitoring of third-party security practices.
Collaboration:
Collaborate with IT, Human Resource, legal, and other relevant departments to ensure compliance with contractual obligations related to IT and data security.
Act as a liaison between IT teams and external auditors or regulatory bodies during audits and assessments.
Continuous Improvement:
Stay updated with the latest compliance regulations, security trends, and technologies.
Propose improvements to the organization’s security and compliance posture.
Requirements
Qualifications:
Education:
Bachelor’s degree in Information Technology, Computer Science, Cybersecurity, or a related field.
Having any two certifications is preferred (e.g., Office365, Azure, Windows server, CISSP, CISA, CISM, CRISC).
Experience:
Minimum of 3-5 years full-time experience in IT administration.
Minimum of 3-4 years of experience in IT security & compliance.
Working knowledge of GRC tools and compliance automation tools like Drata, Sprinto, Vanta is added advantage.
Strong knowledge of compliance frameworks (e.g., SOC2, GDPR, HIPAA, ISO 27001, PCI-DSS).
Soft Skills:
Strong analytical and problem-solving skills.
Excellent communication and interpersonal skills.
Ability to work independently and collaboratively in a team environment.
Strong attention to detail and ability to handle sensitive information with discretion.
Similar Jobs
Zones
Islamabad, Islamabad Capital Territory, Pakistan (On-Site)
• 3 Months ago
Lionsgate Games
Toronto, Ontario, Canada (Remote)
• 2 Months ago
PwC
Bengaluru, Karnataka, India (On-Site)
• 6 Months ago
PlayStation Global
Aliso Viejo, California, United States (Hybrid)
• 3 Months ago
Axinous
United States (Remote)
• 2 Months ago
Get notifed when new similar jobs are uploaded
Similar Skill Jobs
Next Level Business Services
Indianapolis, Indiana, United States (On-Site)
• 6 Months ago
ION
Trumbull, Connecticut, United States (Hybrid)
• 6 Months ago
Hitachi
Pune, Maharashtra, India (On-Site)
• 6 Months ago
Rockstar Games
Carlsbad, California, United States (On-Site)
• 7 Months ago
Next Level Business Services
Redmond, Washington, United States (On-Site)
• 6 Months ago
Rockstar Games
Andover, Massachusetts, United States (On-Site)
• 7 Months ago
Rockstar Games
Carlsbad, California, United States (On-Site)
• 9 Months ago
Get notifed when new similar jobs are uploaded
Jobs in Hyderabad, Telangana, India
PwC
Mumbai, Maharashtra, India (On-Site)
• 6 Months ago
PwC
Gurugram, Haryana, India (On-Site)
• 6 Months ago
Orion Innovation
Mumbai, Maharashtra, India (Hybrid)
• 6 Months ago
PwC
Bengaluru, Karnataka, India (On-Site)
• 6 Months ago
Get notifed when new similar jobs are uploaded
Cyber Security Jobs
Epic Games
Porto Alegre, State Of Rio Grande Do Sul, Brazil (On-Site)
• 1 Month ago
Palo Alto Networks
Bengaluru, Karnataka, India (On-Site)
• 5 Months ago
Anthology Inc
Bengaluru, Karnataka, India (Hybrid)
• 1 Month ago
PwC
Mumbai, Maharashtra, India (On-Site)
• 4 Months ago
Assystems
Cherbourg-en-Cotentin, Normandy, France (On-Site)
• 5 Months ago
Electronic Arts
Bucharest, Bucharest, Romania (Hybrid)
• 2 Months ago
Get notifed when new similar jobs are uploaded
