Isms Lead

Summary

Join Sympower as the ISMS Lead and operate the information security management system according to ISO 27001 standards. This cross-departmental role involves managing policies and procedures affecting the entire company, ensuring data security, integrity, and availability. You will communicate with customers and partners on security matters, oversee audits, and manage security budgets. Sympower offers a competitive compensation package including paid time off, wellness leave, parental leave, remote work budget, and professional development opportunities. Shape Sympower's cybersecurity position and influence company-wide processes in this impactful role.

Requirements

• Proven ability to coordinate complex, cross-departmental projects with precision and efficiency
• Experience managing systems and processes with multiple interdependencies
• Deep understanding of structured systems like ISO 27001 ISMS, with the ability to navigate interlinked documents and processes effectively
• Solid understanding of IT security fundamentals, risk management, and data protection
• Experience in developing and implementing policies with a keen awareness of their practical implications on teams and workflows
• Ability to present information clearly and actionably to diverse stakeholders, including senior leadership and external auditors
• Skilled at translating complex security concepts into accessible language
• Track record of influencing teams and driving outcomes in environments without direct reporting lines

Responsibilities

• Oversee the ISMS based on our chosen standard ISO 27001, including policy and procedure updates, document reviews, and audits
• Organize and lead internal audits, management reviews, and external ISO 27001 audits
• Conduct regular ISMS Governance Council updates to inform leadership of the cybersecurity landscape and ISMS performance
• Ensure that the ISMS complies with NIS2
• Perform risk analyses and coordinate risk mitigation strategies
• Handle non-conformities, implement corrective actions, and maintain compliance documentation
• Manage vendor security, ensuring third-party compliance with Sympower’s security standards
• Take part in incident retrospectives
• Plan and conduct security awareness training for employees
• Foster a company-wide understanding of security policies and their impact on day-to-day operations
• Facilitate cross-departmental collaboration to implement security measures effectively
• Be available to support and take part in customer facing interactions that require explanation of our ISMS
• Lead the security team without direct managerial authority, driving results through influence and coordination

Benefits

• 30 Days Paid Holiday Leave
• 1 Day Paid Wellness Leave
• 1 Day Paid Birthday Leave
• Paid Maternity and Partner Leave
• Pawternity Leave
• Mental Health and Wellbeing Support
• Remote Office Budget
• Internet Allowance
• Development Plan & Budget
• Stock Appreciation Rights
• 2 Days Paid Volunteer Leave