Chief Information Security Officer - Ovar, Portugal - Bosch Group Develop and implement organization-wide security strategies and policies, lead incident response efforts, manage the information security team, oversee security controls and technologies, build relationships with external stakeholders, establish a security governance framework, identify and assess cyber security risks and vulnerabilities, and ensure compliance with legal and regulatory requirements.
Key Responsibilities:
Develop and implement organization-wide security strategies and policies including incident response plans.
Lead and manage the information security team.
Oversee the implementation and management of security controls and technologies and monitor cyber intelligence measures of external security service providers based on defined metrics.
Build relationships with external stakeholders, such as vendors, regulatory bodies, and law enforcement agencies.
Establish and maintain an effective security governance framework in close collaboration with other departments to ensure cyber security requirements are included in projects and initiatives.
Identify and assess cyber security risks and vulnerabilities and conduct ongoing internal and external security audits and risk assessments.
Ensure compliance with relevant legal and regulatory requirements and drive continuous improvement in security practices and processes.
Qualifications:
Education: Master's degree in Computer Science, Information Technology, Business Administration with strong IT focus or a related field.
Experience: Strong understanding of information security principles, technologies, and best practices.
Leadership: Excellent leadership and communication skills to convey complex security concepts to non-technical stakeholders and manage teams.
Business Acumen: Solid understanding of the organization's business objectives, processes, and priorities to align cybersecurity strategies with the overall goals of the organization.
Incident Response: Extensive experience in developing and implementing incident response plans, conducting forensic investigations, and coordinating with relevant stakeholders during an incident.
Compliance: Substantial compliance and regulatory knowledge regarding industry regulations and standards relevant to information security.
Negotiation: Strong negotiation and vendor management skills to ensure that the organization's security needs are covered effectively and cost-efficiently.
#J-18808-Ljbffr