Demonstrated significant experience in either an internal or external information security, risk, and compliance role.
Strong knowledge of digital security and experience in cyber risk management and advice.
Extensive experience in establishing relationships to form effective partnerships with stakeholders within the business.
In-depth understanding of relevant regulatory frameworks and standards (e.g., GDPR, CCPA, ISO 27001, NIST, PCI DSS, Critical National Infrastructure regulations, etc.)
Proven ability to translate complex security requirements into actionable measures.
Professional certifications such as CISM, CISSP, CRISC, or extensive experience in: Risk Management, Information Security Compliance, Information Security Assurance & Governance, Risk, and Compliance (GRC)