Chief Information Security Officer

Job Posting TitleChief Information Security OfficerThe challengeAn exciting opportunity has arisen to contribute to Haier Europe.The Company is on a journey to achieve ambitious business growth and leadership objectives in the region, and we need someone who is passionate, proactive, self-driven and motivated to join a team of open-minded individuals.We are looking for an individual who demonstrates the core values of the Haier's attitude: entrepreneurship and innovation, zero distance to consumers and IoT & Ecosystem thinking.A true change agent with an agile approach thriving for idea contamination and with a hyper-collaborative approach that breaks silos and creates an open ecosystem.What you will doThe CISO will be responsible for implementing and running the enterprise information security program.That will involve identifying, evaluating and reporting on legal and regulatory, IT, and cybersecurity risk to information assets, while supporting and advancing business objectivesA key element of the CISO's role is working with executive management to determine acceptable levels of risk for the organization.He or she will proactively work with business units and ecosystem partners to implement practices that meet agreed-on policies and standards for information security.The CISO should understand and articulate the impact of cybersecurity on (digital) business and be able to communicate this to the board of directors and other senior stakeholdersIf you're a strategic cybersecurity professional and a visionary seeking a challenging role, we invite you to apply.In addition to being a key leadership role, we offer a chance to become a key player in protecting our company's future.Objectives of this roleDevelops an information security vision and strategy that is aligned to organizational priorities and enables and facilitates the organization's business objectives, and ensures senior stakeholder buy-in and mandateOverseeing the protection of company data, intellectual property, and technology assets from cyber threats.Developing and enforcing security policies, procedures, and protocols that align with business goals and regulatory requirements.Identifying and mitigating security risks, ensuring the organization remains resilient against emerging threats.Ensures that security is embedded in the project delivery process by providing the appropriate information security policies, practices and guidelinesManages and contains information security incidents and events to protect corporate IT assets, intellectual property, regulated data and the company's reputationMonitors the external threat environment for emerging threats, and advises relevant stakeholders on the appropriate courses of actionCollaborating with cross-functional teams to integrate security measures into the company's IT and business operations.Manages the budget for the information security function, monitoring and reporting discrepanciesYour tasksDevelop, implement, and maintain a comprehensive security program that includes cyber defence, data protection, and security operations.Conduct risk assessments, identify vulnerabilities, and prioritise remediation efforts to reduce risk exposure.Oversee security incident detection, response, and recovery, ensuring swift mitigation of potential breaches.Manage the security architecture, tools, and technologies deployed across the organisation's IT infrastructure.Works with the vendor management office to ensure that information security requirements are included in contracts by liaising with vendor management and procurement organizationsCollaborates and liaises with the data privacy officer to ensure that data privacy requirements are included where applicableCoordinate with legal, compliance, and regulatory teams to ensure compliance with data protection laws, such as GDPR and HIPAA.Monitor security metrics and report on the organisation's security posture to executive leadership.Lead security awareness training programs for employees to promote a culture of cybersecurity across the organisation.Stay updated on cybersecurity trends, technologies, and best practices to enhance security measures proactively.What you need to succeedRequired skills and qualificationsBachelor's degree in Information Security, Computer Science, or a related field.10+ years of demonstrable experience as a Chief Information Security Officer or in a similar senior-level cybersecurity role.Extensive knowledge of information security principles, cybersecurity frameworks (e.G., NIST, ISO *****), and risk management practices.Working knowledge of security auditing, vulnerability assessments, and risk mitigation.Experience with security technologies such as firewalls, intrusion detection systems, SIEMs, and encryption protocols.Solid knowledge of data privacy regulations and compliance requirements.Ability to develop and implement complex security strategies.Project management skills: financial/budget management, scheduling and resource managementStrong leadership and communication skills, with the ability to influence decision-making at the executive level.Strong analytical and problem-solving skills with a keen eye for identifying potential risks and vulnerabilities.Ability to manage a team of security professionals and work cross-functionally with IT, legal, and compliance teams.Preferred skills and qualificationsMaster's degree in Cybersecurity, IT, or related fields.Relevant certifications in cybersecurity, such as Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), or Certified Information Systems Auditor (CISA).Experience with cloud security and securing cloud infrastructure.Familiarity with incident management and disaster recovery planning.Knowledge of ethical hacking and penetration testing techniques.Background in regulatory compliance and data privacy laws in the industry.Hands-on experience with SIEM tools, firewalls, and intrusion detection systems.Expertise in secure software development and DevSecOps practices.Understanding of artificial intelligence and machine learning applications in security.Multilingual proficiency for international security collaboration.#LI-GG1Haier Europe is an Equal Opportunity Employer.Employment decisions are made without regard to race, color, religion, national or ethnic origin, sex, sexual orientation, gender identity or expression, age, disability, or other characteristics protected by law.#J-*****-Ljbffr