* Managing and continuously developing information security overall within the business.
* Developing and managing an information security management system (ISMS)
* Develop, implement and monitor a strategic, comprehensive information security management and IT risk management programme.
* Work directly with business units to facilitate information risk assessment and information risk management processes.Understand and interact with related disciplines to ensure the consistent application of policies and standards across all technology projects, systems and services.
* Responsible for advising on the yearly PCI re-certification projects.
* Implementing information security training and awareness campaigns across the company.
* Taking responsibility for documenting, updating, and promoting relevant policies, guidelines and procedures
* Coordinating activities related to information security assessments, audits and testing
* Responsible for engagement with suppliers to ensure security compliance and carrying out supplier reviews