Information Security Manager (interim/freelance)

In this role, you will be responsible for the design, implementation and operation of the entire Governance, Risk & Compliance organization.

Tasks;

• develop Information Security Risk Management processes across the organization;
• maintain the Information Security Policy Portfolio;
• manage third-party risk management program (vendor due diligence, security clauses, vendor inventory, risk assessments);
• ensure Information Security requirements are maintained within the procurement process and contract lifecycle;
• manage the security compliance program;
• define and implement a risk-based and/or compliance-driven information security roadmap;
• develop relevant GRC KPI’s and reporting procedures;
• develop and support strategic plans and projects to meet GRC goals and objectives;
• act as the point of contact for the business for all security-related aspects;
• support the business in identifying and mitigating third-party risks through a structured and formalized third-party risk management process;
• ensure security risk management practices are embedded into key business processes;
• coördinate enterprise security policies and communication.

We are looking for someone with;

• minimum of 3-5 years’ experience in the information security industry;
• successful track record of effective project coordination, prioritization, collaboration, organization and timely project delivery;
• knowledge of relevant Information Security management frameworks (NIST, ISO 27001);
• leadership in a fast paced, multi-stakeholder environment
• experience in managing a large and complex workload, prioritizing;
• experience with working in an international environment;
• fluent in English.