Information Security Manager
Lahore, Punjab, PK
3d ago

The ENTERTAINER is a leading digital company whose main goal is to add value to consumers by bringing them the best incentive offers globally. We are a data-driven, 100% digital, tech company. Providing first-rate offers across renowned dining, leisure, entertainment and hotel brands worldwide, the ENTERTAINER has grown with the aim of creating unbeatable value and loyalty everywhere we go. We believe that “experience is everything”, resulting in our passion for creating unforgettable experiences for both our customers, partners and employees.

The Team

The ENTERTAINER is looking for a qualified Information Security Manager to provide expert advice, support & management on information security related matters throughout the organization including maintaining & continually improving the Information Security Management System (ISMS) in accordance with ISO 27001 & GDPR.


The Information Security Manager will…

  • Identify & mitigate information security risks in line with industry practices, the risk appetite of the business & any legal, regulatory or contractual requirements
  • Ensure compliance to legal, regulatory & contractual Information Security requirements & internationally recognized standards are integrated as part of “business as usual” activities
  • Ensure suppliers operate under similar requirements & conduct appropriate & proportionate due diligence assessments
  • Undertake Business Impact Assessments (BIA) and Information Security Management Reviews as necessary across the business – identifying risks, deficiencies, improvements & requirements in operational & technical controls
  • Chair the Information Security Steering Group (ISSG)
  • Co-ordinate & liaise with external auditors & assessors as necessary
  • Control & administer the ISMS (compliance) programme
  • Provide up to date Information Security advice to business projects, incorporating Risk Acceptance Criteria Notices (RANs) & guidance of new suppliers, products or services pre and post contract signature
  • Manage & update Information Security policies, standards & operational processes

Experience required

  • Min 5 years experience in Information Security
  • Expert knowledge of ISO 27000 family
  • Expert knowledge of Information Security audit
  • Graduate with relevant degree
  • CRISC certified
  • CISSP / CISA or equivalent Information Security or Systems Audit accreditation
  • ISO 27001 Lead Auditor or Implementer
  • Excellent communication skills

Powered by JazzHR

Report this job

Thank you for reporting this job!

Your feedback will help us improve the quality of our services.

My Email
By clicking on "Continue", I give neuvoo consent to process my data and to send me email alerts, as detailed in neuvoo's Privacy Policy . I may withdraw my consent or unsubscribe at any time.
Application form