Information Security Manager

Position Summary

We are seeking an experienced and highly motivated Information Security Manager to lead and enhance our global information security program. Headquartered in the United States, our company operates more than 200 offices worldwide and generates over $2 billion in annual revenue. The Information Security Manager will be responsible for protecting the confidentiality, integrity, and availability of the organization's information assets while ensuring compliance with regulatory, contractual, and industry requirements.

Key Responsibilities

• Develop, implement, and maintain information security policies, standards, and procedures.
• Manage and continuously improve the Information Security Management System (ISMS).
• Conduct risk assessments, maintain the risk register, and oversee remediation activities.
• Lead compliance initiatives related to ISO 27001, SOC 2, NIST, GDPR, HIPAA, PCI DSS, and other applicable frameworks and regulations.
• Coordinate internal and external audits and support customer security assessments.
• Oversee vulnerability management, incident response, and security monitoring activities.
• Support business continuity and disaster recovery programs.
• Manage third-party security and vendor risk assessments.
• Develop and deliver security awareness and training programs.
• Collaborate with IT, Legal, Privacy, HR, Compliance, and business stakeholders globally.
• Provide security metrics, risk reporting, and strategic recommendations to senior leadership.
• Lead security projects and mentor junior security professionals.

Qualifications

• Bachelor's degree in Cybersecurity, Information Security, Computer Science, Information Technology, or a related field.
• Minimum of 7 years of experience in information security, cybersecurity, or IT risk management, including at least 3 years in a leadership role.
• Experience managing security programs within multinational organizations is preferred.
• Strong knowledge of information security frameworks and standards, including ISO 27001, SOC 2, NIST, GDPR, HIPAA, and PCI DSS.
• Experience with risk management, vulnerability management, incident response, cloud security, and third-party risk management.
• Professional certifications such as CISSP, CISM, CRISC, ISO 27001 Lead Implementer, or Lead Auditor are highly desirable.
• Excellent communication, leadership, analytical, and stakeholder management skills.

Benefits

We offer a competitive compensation package and a comprehensive benefits program designed to support the health, well-being, and professional growth of our employees. Benefits include medical, dental, and vision insurance; company-sponsored life and disability coverage; retirement savings plans with company matching where applicable; paid time off and company holidays; parental leave; employee assistance and wellness programs; flexible work arrangements; professional development and certification reimbursement; and opportunities for career advancement across our global network.

Equal Employment Opportunity

We are an Equal Opportunity Employer committed to fostering an inclusive and diverse workplace. Employment decisions are made without regard to race, color, religion, sex, gender identity or expression, sexual orientation, national origin, age, disability, veteran status, or any other characteristic protected by applicable law. We celebrate diversity and are committed to creating an environment where all employees can thrive.

Pay: From Rs400,000.00 per month

Work Location: Remote