ICT Security Manager

Position Summary:

With the assistance of a small team, the ICT Security Manager will lead Acquire’s Information Security capabilities focusing upon the in-depth protection of Information Assets stored, processed, or transmitted by Acquire BPO.

This is a hands-on technical and administrative role, working in a complex multi tenanted environment with highly diverse requirements across numerous countries.  As a key role in Acquire BPO’s overall capabilities you will work alongside business operations, compliance, finance, and other departments in addition to technology

This role has organisation wide visibility, accountabilities and is part of the overall Risk Governance framework.

Responsibilities:

• Lead and develop a small team of Information Security Specialists
• Ensure that all technical controls adopted by the company are in-place and effective.
• Ensure all technical controls are effectively monitored, administered, and maintained.
• Ensure all process relating to the ongoing operation of each technical control are current, appropriate, and monitored for effectiveness.
• Provide advice in a consulting capacity to other aspect of the business with regard to the securing and protection of any information assets stored, processed or transmitted by Acquire.
• Exert continuous effort to further the protection of Information Assets.
• Participate in the investigation of Information Security Incidents, providing subject matter expertise and lead all technical aspects of the Investigation.
• Actively promote within the company and to our Customers ongoing awareness and opportunities for improvement in Information Security.
• Lead the efforts in retaining current Information Security certifications & standards adopted by the Company ( PCI-DSS 3.2 ( Level 1 - Service Provider) SOC-I, SOC II, HIPPA) and the adoption of new standards.
• Manage 3rd party suppliers involved in security assessment activities.
• Establish working relationships both Internally and externally.

Accountabilities:

• Effectiveness of all technical Information Security controls.
• Proactive monitoring, analysis and initiation of action based upon observed infosec events and behaviours.
• Timely implementation of any remediation activities identified.
• Meet project schedules and delivery framework requirements.
• Effective and efficient working relationship with customers, the ICT Team, and other departments within the company.
• Manage support issues and enquiries within a timely manner.

Knowledge, Skills and Experience:

• Attention to detail, problem solving, collaborative & outcome focused attitude.
• A passion for continuous improvement.  
• Experience at a detailed level securing mission critical data in a 24*7 non-stop environment.
• Ability to work within a team of highly specialised engineers, leveraging and sharing knowledge.
• In-depth foundation knowledge of communications technology ( How it Works)
• In-depth understand of data encryption standards and techniques.
• Extensive experience leveraging security analytical tools ( SIEM, testing, trace & debug ) in detecting and responding to threats.
• An understanding of both commercial and open source development environments, languages and databases.
• Detailed understanding of and experience implementing or maintain security standards such as PCI-DSS, SOC, ISO-27001, GDPR, HIPPA, NIST.  
• Experience in strategically, tactically, and operationally furthering an organisations security posture.
• A pragmatic approach to management of information across an organisation.
• Detailed understanding in assessing the value of information, the application of classifications, categorisation, treatments and security controls.

Relationships:

• ICT Engineering and support teams
• Senior members of all other departments within the company
• Customers

Join the A-Team and experience the A-Life!