Key Responsibilities:

• Develop and execute the organization’s information security strategy to safeguard the company’s IT infrastructure, data, and digital assets.
• Oversee and manage the company’s information security programs, including risk assessments, threat detection, incident response, and vulnerability management.
• Lead and mentor a team of security professionals, ensuring continuous development, training, and alignment with organizational objectives.
• Work closely with senior executives and departments to integrate cybersecurity policies and procedures into the overall business strategy.
• Lead the incident response process, ensuring effective and timely responses to security breaches or data leaks.
• Establish and maintain information security policies, standards, and procedures to ensure compliance with regulations, including GDPR, PCI-DSS, and ISO standards.
• Monitor and report on security metrics, KPIs, and performance indicators to provide executive leadership with a clear understanding of the organization's security posture.
• Conduct regular security audits and risk assessments to identify vulnerabilities and develop strategies to mitigate risks.
• Ensure the organization’s compliance with relevant legal, regulatory, and contractual requirements related to cybersecurity.
• Collaborate with IT teams to implement security technologies such as firewalls, encryption, and multi-factor authentication.
• Stay up to date on the latest cybersecurity threats, trends, and technologies to proactively address potential risks.
• Provide leadership in building a security-aware culture throughout the organization.
• Act as the primary point of contact for all security-related matters, including external audits, regulatory bodies, and third-party vendors.

Required Qualifications:

• Bachelor’s or Master’s degree in Information Security, Computer Science, Information Technology, or a related field.
• 10+ years of experience in IT and cybersecurity, with at least 5+ years in a leadership role overseeing information security programs and teams.
• Proven experience in developing and implementing information security strategies, policies, and frameworks.
• Deep knowledge of cybersecurity standards and frameworks (e.g., ISO 27001, NIST, CIS, GDPR, PCI-DSS).
• Strong experience in risk management, vulnerability management, and incident response.
• Expertise in security technologies, including firewalls, SIEM, intrusion detection/prevention systems, encryption, and endpoint protection.
• Excellent understanding of cloud security and the implementation of security controls in cloud environments (AWS, Azure, GCP).
• Hands-on experience with network security, application security, and data protection strategies.
• Strong communication skills with the ability to present technical security issues to non-technical stakeholders and executive leadership.
• Proven ability to lead and inspire a team, driving performance and continuous improvement.
• Strong problem-solving skills, with the ability to make critical decisions in high-pressure situations.
• Relevant certifications such as CISSP, CISM, CISA, or equivalent are highly preferred.

Preferred Skills:

• Experience with compliance frameworks and regulations specific to the European market (e.g., GDPR, ePrivacy Directive).
• Knowledge of secure software development practices and experience working with development teams to implement security controls in the SDLC.
• Familiarity with advanced cybersecurity technologies such as AI-driven threat detection and automated security systems.

Salary and Benefits:

• Competitive salary depending on experience and qualifications.
• Health insurance and pension contributions.
• Generous vacation and paid time off.
• Performance-based bonuses.
• Continuous professional development opportunities and certifications.
• Flexible working hours and remote work options.
• Access to cutting-edge security technologies and tools.
• Collaborative and innovative work environment.