Information Security Lead Manager

EC-Council is the worlds largest cyber security technical certification body. We operate in 145 countries globally and we are the owner and developer of various world-famous cyber security programs. We are proud to have trained and certified over 220,000 information security professionals globally that have influenced the cyber security mindset of countless organizations worldwide.

We are seeking a seasoned and strategic Information Security Lead to spearhead our cybersecurity initiatives and lead a team of talented security engineers. In this critical role, you will be responsible for defining security strategy, optimising security architecture, and driving execution across multiple security domains including cloud, network, application, and

endpoint security.

You will serve as both a technical expert and a team leader, ensuring the organization's digital assets are well protected while fostering a high-performing security team. If you bring a passion for security, strong leadership skills, and a track record of building secure enterprise environment then we want to hear from you.

Infosec Lead Responsibilities:

As an Infosec Lead, your responsibilities will include:

Lead a team of security engineers, overseeing their work, mentoring them, and ensuring alignment with organizational objectives.

Manage end-to-end execution of IT security projects, including design, planning, implementation, and ongoing optimization ofsecurity architecture, infrastructure and solutions.

Define and implement next-generation security strategies, architectures, and governance processes.

Partner with key stakeholders across business units to understand requirements and deliver for-purpose security solutions.

Validate and manage Business Continuity (BCP) and Disaster Recovery (DR) plans, coordinating with relevant teams.

Prepare, review, and maintain documentation including incident reports, policies, procedures, and technical recommendations.

Continuously assess and enhance the organizations security posture across antivirus, application control, rewall, SIEM, VPN, SSL, IDS/IPS, and more.

INFORMATION SECURITY LEAD JD

Develop and enforce infrastructure and application hardening strategies aligned with best practices.

Lead threat modeling, risk assessments, and vulnerability remediation efforts.

Identify new tools, opportunities, and innovations to improve Security Operations and efficiency.

Drive implementation of audit recommendations, and continuously in-tune security appliances and controls.

Maintain expertise in threat landscape analysis and risk profiling, and apply it to organizational defense mechanisms.

Manage relationships with external vendors, security product providers, and managed services partners.

Oversee vulnerability management and penetration testing programs; ensure timely mitigation and closure of findings.

Collaborate with application, DevOps, and infrastructure teams to integrate security into DevSecOps pipelines.

Present detailed security posture reports, KPIs, and dashboards to senior leadership and the board.

Infosec Lead Requirements:

To be successful in this role, you should have:

10+ years of experience in Information Security, with 3+ years in a team leadership role managing security teams.

Proven experience in leading cross-functional team, mentoring security engineers, and building strong team dynamics.

Expertise in developing and managing security architectures, policies, and controls across cloud and on-prem environments.

Hands-on experience with cloud security in Azure and AWS environments.

Proficient with security tools including rewalls (SonicWALL, Fortinet), SIEM, endpoint protection, network monitoring, and IAM solutions.

Deep knowledge of routing, switching, and network segmentation practices for secure infrastructure design.

Familiarity with ISO 27001, NIST, CIS, PCI-DSS, and other global security standards.

Proficient in DevSecOps methodologies, tools, and CI/CD integration.

Experience presenting security metrics, dashboards, and strategic updates to executive stakeholders.

Bachelor'ss degree in Computer Science, Information Systems, or related field; certiifications such as CISSP, CISM, CCSP, or CEH are preferred.

Strong understanding of threat intelligence, incident response, and forensics.

Excellent communication skills with the ability to simplify complex technical topics for business audiences.

Personal Attributes and Soft Skills

Team Leadership:

Builds, mentors, and inspires a high-performing security team; leads with integrity, empathy, and technical credibility.

Strategic Thinking:

Aligns security initiatives with business goals, ensuring a proactive and forward-thinking security posture.

Customer Focus:

Balances security needs with user experience and business priorities. Problem-Solving Skills:

Approaches challenges analytically and methodically to design effective, ong-term security solutions.

Project & Task Ownership:

Takes full accountability for delivering results across people, process, and technology.

Mentorship:

Guides junior engineers with structured feedback, hands-on coaching, and growth opportunities.

Requirement Understanding:

Converts business and technical requirements into well-dened security policies and actions.

Proactive Approach:

Anticipates security risks, stays updated with industry trends, and responds with agility.

Effective Time Management:

Prioritizes competing demands effectively while managing incidents and projects simultaneously.

Additional Information

We are an equal opportunity workplace and are an affirmative action employer. We are always committed to equal employment opportunity regardless of race, color, ancestry, religion, sex, national origin, sexual orientation, age, citizenship, marital status, disability, gender identity, or Veteran status and we do not discriminate on the basis of such characteristics or any other status protected by the laws or regulations in the locations where we work.

This job description has been designed to indicate the general nature and level of work performed by employees within this classification. It is not designed to contain or be interpreted as a comprehensive inventory of all duties, responsibilities, and qualifications required of employees assigned to this job.

EC-Council is committed to working with and providing reasonable accommodation to individuals with disabilities. If you have a medical condition or disability which inhibits your ability to complete any part of the application process and are in need of a reasonable accommodation to complete the process, please contact us and let us know how we may assist you.

This notice together with our Privacy Policy and Terms of Use of this website and any other documents we mention here are meant to inform you on what personal data about you we collect, use, disclose, share or otherwise process when you are applying for a job at EC-Council or when EC-Council contacts you for recruitment purposes. Please read carefully to understand our views and practices on how we protect your personal data - Privacy Policy | EC-Council ).