Job Description

Overview

The Information Security Manager is responsible for the development, administration, and maintenance of the organization's Information Security Management System (ISMS). This role ensures that information security measures are effectively integrated with operational safety, aligning cybersecurity strategies with the organization's safety objectives.

Role and Responsibilities

Strategic Leadership

Define, implement, and maintain information security objectives, requirements, strategies, and policies. Present security vision and strategies to senior management for approval, emphasizing safety implications. Negotiate and manage the information security budget.

Governance & Risk Management

Supervise the ISMS with a focus on safety, coordinating with the Safety and Compliance Monitoring Manager. Ensure senior management approves information security risks, considering safety aspects. Develop security plans that integrate safety controls and align with industry safety standards. Monitor advancements in safety-related information security technologies and practices.

Incident Management & Reporting

Report security incidents, risks, and findings to senior management, highlighting safety implications. Ensure organizational resiliency through safety-focused incident response and business continuity planning.

Stakeholder Engagement

Educate senior management on information security risks and their impact on operational safety. Build relationships with cybersecurity authorities and communities, focusing on safety aspects.

Resource & Capacity Management

Review and allocate appropriate security resources, considering safety requirements. Promote continuous capacity building through training and awareness programs that encompass both security and safety.

Qualifications and Experience

Proven experience in information security management, preferably in safety-critical environments. Strong understanding of ISMS frameworks and safety integration. Excellent communication and leadership skills. Ability to assess and mitigate risks with a safety-first approach. Familiarity with industry-specific safety standards and cybersecurity regulations.
Job Type: Full-time

Work Location: In person