The Head of Security (AVP) will be responsible for leading and managing the overall security strategy, governance, and risk posture of the organization. This role is critical in safeguarding our people, digital assets, and data, especially in the context of our eCommerce and Healthcare operations.
Key Responsibilities:Develop, implement, and enforce robust security policies, standards, and frameworks to protect the organization’s IT infrastructure and data assets.
Collaborate with business and technical stakeholders to build and maintain emergency response plans, ensuring business continuity during security incidents.
Lead vulnerability and risk assessments across the enterprise and define mitigation plans.
Design and drive data security strategies, including access control, classification, encryption, and secure disposal protocols.
Oversee cybersecurity infrastructure and tools, including but not limited to WAF, IDS/IPS, DDoS protection, firewalls, antivirus, malware detection, SIEM, data privacy, DLP, and proxy solutions.
Coordinate InfoSec gap identification, tracking, and closure in collaboration with internal teams and external partners.
Maintain and test the organization’s security incident response program.
Guide enterprise asset management and risk mitigation programs.
Ensure endpoint protection and security hardening in a complex, multi-layered environment.
Key Attributes:Ability to operate independently with minimal supervision.
Strong prioritization and multitasking capabilities.
High degree of discretion and confidentiality, especially in crisis situations.
Flexible and adaptive work style to meet changing business needs.
Calm and composed under pressure.
Familiarity with eCommerce and Healthcare business domains is a strong advantage.