Chief Information Security Officer (CISO) Vice-President

Expérience professionnelle :
10+ years of experience in information security, with a minimum of 5 years in a leadership role.

Diplômes et formations :
A minimum of a Bachelor’s degree in Computer Science, Information Technology, Cybersecurity, or a related field; with a Master’s degree being preferable. A Relevant professional certification or accreditation such as (CISSP, CISM, CISA, etc.) will also be highly desirable. In-depth understanding of security frameworks (NIST, ISO 27001, etc.) and experience deploying industry best practices.

Compétences linguistiques et informatiques :
Fluent English both written and spoken, and knowledge of an additional language would be beneficial

Objectifs du poste
Working in closely with business and technology leaders; The CISO will lead the development, implementation, and overall governance of the JTI’s information security strategy, which will apply to all of JTI’s Markets, Factories, and Leaf Origins. (S)he will play a critical role in protecting the company’s information assets, ensuring compliance with all local and international regulatory requirements, and fostering a culture of security awareness throughout the organization

Domaine de responsabilités :
Risk Management :
Identify and assess potential security risks and vulnerabilities, implementing measures to mitigate them.
Conduct regular security audits and assessments to ensure compliance with all JTI policies and procedures, industry standards, and relevent international and local regulations.

Stakeholder Collaboration :
Collaborate with IT, legal, and compliance teams to ensure the integration of security measures into all business processes.
Engage with our strategic partners and vendors to enhance the organization’s security posture.

Regulatory Compliance :
Ensure the organization complies with relevant regulations, including GDPR, HIPAA, PCI-DSS, and others as applicable.
Prepare and present regular updates on security posture to senior management.

Incident Response :
Lead the development and execution of incident response plans, ensuring rapid response to security breaches and data loss.
Oversee investigations into security incidents and coordinate with relevant stakeholders.

Compétences comportementales :
Proven track record of building and leading successful teams.
Strong analytical and problem-solving abilities.
Strong oral and written communication skills, with the ability to build relationships across the business.
Ability to work collaboratively with cross-functional teams.
Strategic thinker with a proactive approach to (security) challenges