Chief Information Security Officer

- Develop, implement, and maintain a comprehensive cybersecurity strategy aligned with business objectives and risk appetite. - Maintain the Information Security Management System (ISMS) for the group. - Establish policies, standards, and frameworks to continuously improve the companys security posture. - Identify, evaluate, and mitigate cybersecurity risks across the organization and its subsidiaries. - Conduct regular security risk assessments and penetration testing to protect systems and data. - Lead efforts to secure critical infrastructure, proprietary data, and operational technologies. - Coordinate and oversee the cybersecurity certification processes (e.g., ISO 27001, NIS2, DORA) across all subsidiaries. - Support local Managers to ensure harmonization of security standards across the group. - Monitor subsidiary compliance with group policies, legal and regulatory frameworks. - Build and lead a Security Operations Center (SOC) and incident response team. - Build and lead a Vulnerability Operations Center (VOC). - Drive Cyber Crisis Simulation Exercise. - Develop and execute incident response plans and forensics capabilities. - Stay up to date with emerging threats, vulnerabilities, and regulatory changes. - Promote a strong security culture within the organization. - Define and implement security awareness training programs for all employees. - Serve as the internal advocate for security best practices. - Report regularly to executive leadership and the Board of Directors on cybersecurity risks, incidents, and compliance status. - Act as the key contact for external auditors, regulators, and partners regarding information security matters.