IT Security Manager Location: Newbridge
(Open to public competition)
Bord na Móna is currently looking for an IT security manager to join the IT team.
The successful candidate will be responsible for securing the operations, both internal and external facing.
The role is responsible for information security strategy, technology decisions and implementation, as well as liaising with the business.
The role will be responsible for managing IT compliance, audit actions and the IT Risk register, with internal and external stakeholders.
Main Duties and Responsibilities: Assess the current environment, identify key areas of risk, develop the enterprise security strategy, prepare an annual operational plan/roadmap and deliver on the strategy across the enterprise.Responsible for all aspects of the Information Security program, including people, process, technology and compliance.
Responsible for ensuring ability to meet third party assessment requirements.
Ideally, the candidate will have experience working with Operational Technology.Identify, report and control incidents.
All security incidents must be centrally managed to ensure consistency in the management of, and response to incidents.
For major incidents prepare post-incident reports and lessons learnt and present to senior management and the board as needed.Responsible for the development of the enterprise-wide cyber security agenda and would provide both classroom and web-based training on an annual basis to all members of staff, including contractors and third parties.Evaluate emerging cybersecurity and IT technologies for adoption, as well as provide guidance to internal technology and business teams.
In addition to the awareness training, it is expected that the role would be visible and continuously communicating with staff, management and with executive leadership, including the board.
Brief leadership team on a regular basis on Information Security relevant trends, data, and more.Monitor for potential threats both internal and external.
Understanding the threat landscape, constantly test the enterprise for weaknesses through external and internal vulnerability and penetration testing, and adapting the enterprise security programme to remove or mitigate new and emerging threats is critical.
Develop and manage budgets for the Information Security department.Cyber Security is classified as one of the highest risks to the organisation.
The role is responsible for managing internal/external auditors and the recommendations from the audits.
The role will own the Internal Controls Framework and maintain the IT risk register.
Responsible for ensuring compliance with applicable regulations, including PCI DSS, GDPR, etc.
Specifically responsible for ISO27001 certification and compliance with NIS2 legislation.
Managing 3rd party security vendors is crucial to ensure the overall integrity of BnM systems.Proactively participate in the performance management process to ensure delivery of their own and the wider team's objectives.All employees are expected to cooperate fully with all provisions taken by the company for ensuring Health and Safety, and Welfare of co-employees and members of the public using the premises.The Person: The ideal candidate will possess the following qualifications, skills, knowledge, and attributes:
Minimum 10+ years of IT infrastructure/application experience with 5+ years in the IT Security field.Professional certifications in CISSP or CISM or equivalent is preferred.Experience with Operational Technology will be a distinctive advantage.The selection process for this role will include candidate screening from application.
If you wish to be considered, simply click "Apply" on the job advert, on or before 13th of March 2025.
#J-18808-Ljbffr