Information Security Officer
Permanent ¦¦ Hybrid ¦¦ Dublin City Centre
€80,000 - €95,000
This position is a pivotal leadership role within a growing Information Security function. This newly created position will set the standards for information security across the business including Risk, Vulnerability Management, Governance, Compliance, and more with a focus on security frameworks – NIST2 and ISO27001
This is both a functional and non-functional role working alongside senior stakeholders, external clients, and 3rd parties.
The role requires a balance of governance, risk, and compliance (GRC) expertise, with the ability to execute projects effectively, manage third-party risks, and bridge communication between technical teams and senior management.
Key Responsibilities
* Develop and enforce cybersecurity policies, ensuring compliance with NIST 2.0 and ISO 27001.
* Conduct gap analyses and create remediation plans for compliance benchmarks.
* Manage third-party risk assessments and security onboarding for new contracts.
* Oversee annual PCI-DSS certification processes with third-party providers.
* Maintain and update business continuity plans, auditing protocols, and documentation.
* Lead incident response efforts, including breach investigations and threat management.
* Collaborate with Group IT on technical implementations and policy alignment.
* Manage vulnerability assessments and ensure effective penetration testing.
* Provide regular updates and reports at the board level on cybersecurity activities and compliance.
* Design and implement company-wide cybersecurity awareness programs, including phishing simulations and training campaigns.
* Act as an information security advocate, representing the company at industry conferences and events.
* Support the ongoing transition to cloud-hosted applications and SaaS platforms.
* Assist in defining cybersecurity strategy, annual projects, and associated funding requirements.
* Reduce reliance on managed service providers by building internal capabilities.
Experience & Qualifications Required
Essential:
* Minimum 5+ years in information security, with strong governance, risk, and compliance (GRC) expertise.
* Relevant certifications (CISSP, CISM, or equivalent).
* Experience in incident management and response, including proactive breach mitigation.
* Demonstrated success in policy creation, enforcement, and regulatory compliance (NIST 2.0/ISO 27001).
* Strong understanding of risk management, third-party reviews, and audits.
* Ability to communicate effectively with both technical teams and executive stakeholders.
Desirable:
* Background in designing and rolling out security training programs.
* Experience in cloud security and SaaS platform management.
Benefits
Compensation:
* Salary: €80,000 to €95,000 DOE
* Defined Benefits Pension Scheme
* Health insurance
* 25 days annual leave and more
If you would like to be considered for this position, please share a copy of your updated Cv to mary@techheads.ie
#J-18808-Ljbffr