Job Description :Our client is seeking a very senior IT Security Manager who can lead the security for their Corporation. 

Must Have Primary Skills :

• Develop, implement and maintain a Strategic Framework for Information Security and IS Risk Management.  
• Review and assess framework to ensure IS Security compliance to relevant prevailing legislation. 
• Monitor the overall effectiveness of the Information Services risk framework. 
• Develop, implement and maintain IS Risk Management processes and procedures. 
• Identify strategies for developing a culture of Information Services Risk Management best practices. 
• Provide process for the regular review and documentation of IS security threats or risks of project, operational or business goals, using tiered empowerment: Make standard ISRM decisions using methodology; Escalate major or significant ISRM decisions to the VP IS Risk Management for decision; 
• Recommend ISRM solutions to business when risk extends beyond IS Department.  Escalate to business the associated levels of risk and the effectiveness of risk mitigation strategies when escalation is required.   
• Assess, document and recommend actions regarding IS Risks. 
• Review Change and Release Records to ensure that risks of proceeding and of not proceeding are understood and documented. 
• Provide risk reporting to Enterprise Risk Management (ERM). 
• Maintain an awareness of advances in Risk Management technology, processes and best practices.  
• Recommend innovations to management as warranted. Assist Production Support in the development Major Incident Response procedures for security breaches. 
• Assist Production Support in the role of Major Incident Manager in the event of a major security incident. 
• Perform and report on all security reviews resulting from security breaches to VP IS Risk Management. 
• Review security related incidents to ensure appropriate actions have been completed or are tasked appropriately (i.e. log reviews, patching status, security build procedures

Nice To Have Secondary Skills :

• Review, recommend and assess internal and external IS policies to support effective IS Governance and protect IS assets. 
• Document, develop and maintain IS Policies in collaboration with all IS areas.
• Document, develop and maintain a process to sign and renew policies, Non-Disclosure agreements and Confidentiality Agreements.   

Proven Experience In :