Information Security Officer

We operate primarily in a Linux-based environment, so a strong foundation in Linux security is essential.

If you're a security-minded professional who loves staying ahead of cyber threats, designing secure

systems, and creating awareness across an organisation, we want to hear from you.

List of Responsibilities:

Ongoing leadership and review of IT security. Ensure the alignment of cyber security and

business objectives within the company.

Implementing and designing cyber security policies, procedures and system solutions in line with industry standards and certifications

Take ownership of ISO 27001 implementation, compliance, and continual improvement

Operate, conduct, and maintain company's SIEM platform (Wazuh) and conduct regular security audits of systems, policies, procedures, network configuration, operating systems, authentication systems, permission structures

Own and manage the patching and vulnerability scanning process, including the use of tools such as OpenVAS or Nessus (preferred)

Serve as the company point person for third-party security audit(s)

Provide pre-sales security briefings / Q&A to company HPC Cloud customer security teams

Work with company HPC Cloud customers and company teams on security integration

Provide strategic-level guidance for company's cyber security program and ensure compliance with cyber security policy, standards, regulations and legislation, working with the senior executives within the company

Contribute to the development and maintenance of company's business continuity and disaster recovery plans, with the aim to improve business resilience and ensure the continued operation of critical business processes

Report on the company's security risk profile, the status of key systems and any outstanding

security risks, any planned cyber security uplift activities, any recent cyber security incidents, and expected returns on cyber security investments

Oversee company's response to cyber security incidents, including how internal teams respond

and communicate with each other during an incident

Ensure that a consistent vendor management process is applied across their organisation,

from discovery through to ongoing management

Job Requirements:

Minimum of 10 years of experience in Information Systems and/or Security Management

roles

Solid understanding of information security principles and frameworks such as ISO 27001,

NIST, and industry best practices

Strong hands-on experience securing Linux-based systems and environments

Familiarity with threat detection, vulnerability management, and incident response

Proficient knowledge of firewalls, intrusion detection/prevention systems, and endpoint

protection tools

Proven ability to develop, implement, and enforce effective security policies and procedures

Excellent communication skills, including the ability to lead and deliver security training and

awareness programs

The following experience is desirable, but not mandatory:

Experience with CI/CD pipelines, Terraform, DevSecOps, and Kubernetes

Familiarity with Palo Alto or other Next-Generation Firewalls (NGFWs)