IT Information Security Manager

Job Summary:

The IT Info security Manager is responsible for developing, maintaining, and optimizing IT processes, policies, and documentation to enhance operational efficiency, ensure regulatory compliance, and support knowledge management within the organization. This role involves collaborating with IT teams, business units, and compliance officers to standardize workflows, improve IT governance, and ensure clear and accessible documentation.

Key Responsibilities:

1. Compliance & Regulatory Adherence

2. Ensure IT processes comply with legal, regulatory, and industry standards

3. Conduct IT audits, risk assessments, and policy reviews to identify gaps and enforce compliance

4. Collaborate with security and compliance teams to align IT operations with governance frameworks.

5. Process Development & Optimization

6. Design, implement and refine IT processes to align with industry standards (eg. ITIL, ISO 27001, etc)

7. Develop workflows to improve IT service delivery, change management, and incident resolutions.

8. Conduct regular reviews and updates to optimize IT procedures and policies.

9. IT Documentation Management

10. Create, maintain, and refine IT policies, procedures, user manuals, and technical documentation

11. Ensure technical documentation is clear, accurate, and accessible for IT teams and stakeholders

12. Manage IT knowledge bases, wikis, and documentation repositories.

13. Collaboration & Training

14. Work closely with IT, business, and compliance teams to document and improve workflows

15. Train IT staff and end-users on IT policies, procedures, and best practices.
16. Act as point of contact for IT documentation inquiries and process-related improvements.

Key Qualifications:

Education: Bachelor's degree in any of the following:

• Information Technology (IT) or Information Systems - covers IT documentation, compliance, IT governance/management and business process.
• Computer Science - strong foundation in software, security, and technical documentation
• Business Administration (with IT or Compliance focus) - combines business processes with IT governance.

Related Degree (a plus):

• Legal Studies (with IT Law Focus) - regulatory frameworks and industry-specific compliance requirements (ITIL, ISO 27001, etc.)
• Library and Information Science - Managing and structuring technical information
• Technical Writing - Ideal for IT documentation and regulatory compliance
• Regulatory Affairs - specialized in compliance, laws, and industry regulations.

Experience:

• Minimum of 3-5 years experience in IT compliance management, IT documentation management, regulatory affairs with proven task record in compliance initiatives.
• Experience in preparing and submitting regulatory documents and interacting with global IT standardization institutions IT security frameworks and government agencies.
• Experience with IT regulations and certifications (ISO 27001, etc.)

Skills:

• Strong knowledge of IT regulatory/governance frameworks and industry-specific compliance requirements (ITIL, ISO 27001, etc.)
• Proficient in document management systems and regulatory software (eg. Confluence, SharePoint, Wiki Platforms, Microsoft Office, Flowcharts)
• Excellent organizational, communication, and project management skills
• Analytical mindset with the ability to assess data, trends, and performance metrics.
• Ability to lead cross-functional teams and manage complex projects.

Certifications (At least one of the ff:)

ITIL, ISO 27001, Certified Lean Six Sigma (CLSS), Certified Manager of Quality/Organizational Excellence (CMQ/OE), Certified Business Process Professional (CBPP), Certified Professional in Business Process Management (CPBPM), Project Management Professional (PMP) Certification, Total Quality Management (TQM) certification or its equivalent.

Work Environment:

Office based with occasional travel required for site visits, regulatory meetings, or industry events

Collaborative work with multiple departments and stakeholders

Engaging in various task that require both independent and team-driven efforts.