Privacy and Information Security Officer

Join Sri Lanka’s Great Place to Work Awarded organization, Tech One Lanka!

We are an organization that celebrates the diversity of our teams, where everyone can be themselves and are empowered to do their best work. Our purpose is to build an empowered community with empathy and a growth mindset to build innovative solutions to achieve remarkable results. We foster a safe space for everyone to learn, grow, and have fun. This is why our people can’t believe that their work here is actually a job. That’s because innovation is at the heart of everything we do. Every day our people get to imagine new possibilities, take magnificent risks, fail spectacularly, and succeed in spaces no one has dared to venture into before.

What’s in it for you:

Here at Tech One, you’ll have the opportunity to make an impact by contributing to our global projects and working with diverse talented individuals across our offices. We promote an always-learning culture and provide our people with vast opportunities for growth. Got any suggestions to make Tech One an even better place to work at? We have a team who listens; share your thoughts and contribute to the changes. We are also prioritizing work-life balance with our flexible and hybrid work schedule. Got the skills and right qualities to be part of our awesome team? Competitive remuneration awaits you!

YOUR ROLE: SAFEGUARDING EXCELLENCE

As the Privacy and Information Security Officer, you are the guardian of our organization’s integrity, ensuring privacy and security standards that define our commitment to excellence. Your role encompasses a range of key responsibilities to ensure the organization’s robust privacy and security posture. This includes developing and implementing comprehensive privacy and security policies aligned with relevant laws and best practices. You will oversee compliance management, ensuring adherence to data protection laws and information security standards. Conducting regular risk assessments, leading incident response efforts, educating employees on security threats, managing vendor compliance, collaborating with IT departments, and continuously monitoring and improving security policies are integral aspects of your role.

YOUR KEY RESPONSIBILITIES:

  • Develop and Implement Privacy and Security Policies: Create and enforce policies for data privacy and information security in compliance with relevant laws, standards, and best practices.
  • Compliance Management: Ensure the organization adheres to data protection laws (like GDPR, HIPAA) and information security standards (such as ISO 27001, NIST).
  • Risk Management: Conduct regular risk assessments and audits to identify vulnerabilities and implement appropriate security measures.
  • Training and Awareness: Educate employees about security threats, data privacy laws, and the organization’s policies and procedures.
  • Incident Response: Lead efforts in responding to security incidents, including data breaches, by coordinating with IT teams and other stakeholders.
  • Vendor Management: Work with vendors and partners to ensure their compliance with the organization’s privacy and security standards.
  • IT Collaboration: Collaborate closely with IT departments to integrate security measures into all technology solutions and IT practices.
  • Continuous Monitoring and Improvement: Regularly review and update security policies and practices to adapt to new threats and regulatory changes.

WHAT WE’RE LOOKING FOR:

  • Your Educational Background: Bachelor’s or master’s degree in Information Technology, Cybersecurity, Law, or related field. Certifications in privacy (CIPP, CIPM) and security (CISSP, CISM, CEH) are highly preferred.
  • Your solid experience in IT security, data protection, and compliance roles within an IT service environment. Between 8 to 10 years of experience in IT security, data protection, and compliance roles within an IT service environment.
  • Your certifications in privacy (CIPP, CIPM) and security (CISSP, CISM, CEH) would be a big plus
  • Your legal and technical, In-depth understanding of data protection laws and information security standards
  • Your Analytical and Problem-Solving Skills: Ability to analyze security risks and devise and implement strategic solutions.
  • Your Communication and Interpersonal Skills: Strong skills in communicating complex security and privacy concepts effectively to various stakeholders.
  • Your Technical Proficiency: Advanced knowledge of IT security infrastructure, software, and management practices.

How to get in touch with us:

Address: Tech One Global Lanka (Pvt) Ltd, No:185/4, Havelock Road, Colombo 05

E-mail your CV to hr@techoneglobal.com along with the contact details of two non-related referees

Apply Here

    Personal Information

    First Name Email

    Name of Employee

    Last Name Phone Number

    Upload CV

    Cover Letter (Be Concise)

    Additional Information

    (Leave blank if not applicable)

    Name of Employer Company Address Date Started

    Previous Job Position Company Phone Number Date Ended

    [/dipe_one] [dipe_one]

    Twitter
    Facebook
    LinkedIn