Information Security Manager

Job Summary: We are seeking an experienced Information Security Manager to oversee the development and implementation of an enterprise-wide information security program that addresses both traditional IT infrastructure and emerging Web 3.0 technologies.

About the Role:

The Information Security Manager will be responsible for overseeing the development and implementation of an enterprise-wide information security program that addresses both traditional IT infrastructure and emerging Web 3.0 technologies. This includes establishing and enforcing security policies, procedures, and standards to safeguard the organization's data and systems.

Key Responsibilities:

• Oversight of the development and implementation of an enterprise-wide information security program.
• Establishment and enforcement of security policies, procedures, and standards to safeguard the organization's data and systems.
• Leadership of the development and implementation of an enterprise-wide information security program that addresses both traditional IT infrastructure and emerging Web 3.0 technologies.
• Conducting regular security risk assessments and audits to identify vulnerabilities and ensure compliance with regulatory requirements.
• Overseeing the management of security incidents and investigations, with a focus on detecting and mitigating threats specific to Web 3.0, such as vulnerabilities in decentralized finance (DeFi) platforms and non-fungible tokens (NFTs).
• Collaboration with engineering/technology and other departments to integrate security measures into the organization's technology infrastructure.
• Development and management of the information security budget, ensuring efficient allocation of resources to high-priority initiatives.
• Staying current with emerging security threats and technologies, particularly in the Web 3.0 space, and adapting strategies accordingly to mitigate risks.
• Providing regular reports to senior management and the board of directors on the status of the information security program.
• Leading the organization's response to security audits and assessments conducted by external parties.
• Promoting a culture of security awareness across the organization through training and awareness programs.
• Collaboration with legal and compliance teams to ensure adherence to relevant laws and regulations.
• Development and maintenance of strong relationships with external stakeholders, including regulatory bodies, industry associations, and security vendors.
• Selection and implementation of security solutions.
• Management and mentorship of a team of security professionals.
• Maintenance of the organization's security certifications.
• Development and implementation of a robust incident response plan to address potential security breaches.

Required Skills and Qualifications:

• Bachelor's degree in computer science, information technology, or a related field; advanced degree preferred.
• 8+ years of experience in information security, with at least 8 years in a senior leadership role.
• Strong knowledge of information security standards and frameworks.
• Proven experience in developing and implementing comprehensive information security programs.
• Solid understanding of risk management principles and practices.
• Experience conducting security risk assessments and developing mitigation strategies for both traditional IT and Web 3.0 technologies.
• In-depth knowledge of regulatory requirements related to information security, data privacy, and Web 3.0 technologies.
• Strong leadership skills with the ability to inspire and motivate teams.
• Exceptional communication and interpersonal skills.
• Analytical mindset with the ability to think critically and solve complex problems.
• Detail-oriented with strong organizational and project management skills.
• Ability to navigate and influence in a complex and fast-paced business environment.
• Professional certifications such as CISSP, CISM, or CRISC are highly desirable.
• Knowledge or certification in blockchain security is a plus.

Benefits:

We offer a competitive salary and benefits package, including opportunities for professional growth and development.