Security Apps Lead

Overview

The Security Apps Lead is a developing management role responsible for operationally managing organizational information security programs. This role plays an important part in managing the implementation of company security and governance strategy frameworks, policies, and practices, enabling a risk-free and scalable business operations. The Security Apps Lead collaborates with cross‑functional teams, management, and other stakeholders to maintain a robust and proactive information security posture while fostering a collaborative and innovative team culture focused on operational excellence.

• Provide operational management in the implementation of an organization‑wide information security strategy aligned with business objectives.
• Maintain and implement information security policies, procedures, standards, and guidelines that comply with industry best practices and regulatory requirements.
• Coordinate the identification, assessment, and management of information security risks across the organization, including data, systems, networks, and third‑party relationships.
• Promote a culture of security awareness among employees through training, education, and regular communication.
• Coordinate the execution of incident response plans to effectively address and mitigate security incidents.
• Ensure company’s compliance with relevant security regulations, laws, and industry standards.
• Assist with assessing and selecting appropriate security technologies and solutions to protect company digital assets.
• Implement security monitoring tools and systems to detect and respond to security threats and provide regular reports to senior leadership and stakeholders.
• Stay informed about emerging security threats and industry trends to continuously enhance the organization’s security posture.
• Effectively communicate security incidents, responses, and mitigation efforts to relevant stakeholders.
• Coordinate and manage internal and external security audits and assessments.
• Provide guidance and management to the information security team, ensuring adherence to security policies and procedures.

• Solid knowledge of security frameworks and standards (e.g., ISO
  27001, NIST, CIS, etc.).
• Solid understanding of security technologies, tools, and best practices.
• Excellent communication and presentation skills with the ability to effectively convey complex security concepts to non‑technical stakeholders.
• Developing team‑management skills to lead and motivate a diverse security team.
• Good problem‑solving abilities with a focus on delivering results.
• Good business acumen and the ability to align security activities with overall strategic objectives.