Identify and evaluate potential areas of Information Security threat by assessing the probability and impact, and implementing associated mitigations.
Monitor and contribute to the implementation of the Information Security strategy.
Evaluate the adequacy and effectiveness of internal controls relating to Information Security risks.
Ensure appropriate procedures, policies, and processes are in place, and aligned and agreed with relevant stakeholders.
Develop appropriate, pragmatic strategies to deliver effective controls and Information Security management objectives and implementation across the company.
Manage client relationships and ensure management focuses on the Information Security agenda.