Lead the development and implementation of information security strategies to safeguard the organization’s digital assets and infrastructure. Ensure compliance with regulatory requirements and internal policies while managing risks associated with digital and technological operations. Act as the central point of contact for information security matters, collaborating with various departments to mitigate risks and enhance overall security posture

• Risk Management: Identify and assess risks to information assets, develop and implement strategies to mitigate them, and continuously monitor the effectiveness of risk management processes
• Compliance Management: Monitor and ensure compliance with applicable laws, regulations, and standards related to information governance and data protection. Stay updated on changes in regulatory requirements and industry best practices. Develop and implement compliance programs and initiatives, including training and awareness programs.
• Stakeholder Engagement: Collaborate with IT, HR, legal, and audit teams to integrate security measures across all departments, ensuring that all aspects of the organization adhere to compliance standards. Facilitate communication and coordination to address security concerns and uphold regulatory requirements.
• Third Party Risk Assessment: Identify and conduct third party risk assessment on all our critical third-party vendors.
• Audit Management: planning, execution, and oversight of audit activities (internal, external, regulatory, etc.) within the organization to ensure compliance, identify risks, and drive continuous improvement.
• Client Risk Assessments: Completing various client risk assessments carried out by our supporting clients on our infrastructure setup addressing all sections on security controls, data protection, compliance, and business continuity.
• Conduct and report risk assessment and compliance check as per cycle.