Information Security Manager

Evolvice is a nearshore technology services provider that helps businesses scale, innovate, and enhance efficiency. Since 2012, we’ve been developing software solutions and building high-performing remote teams. Today, we focus on integrating AI into business processes and providing IT and security support to drive digital transformation. Originally based in Germany, we have established development hubs in Egypt, Ukraine, and Portugal and offices in Saudi Arabia. This international presence enables us to deliver high-quality, cost-effective solutions worldwide. Our Services:* Nearshore Teams – Build and scale remote teams of any size with expert engineers. * AI-Powered Business Productivity – Leverage AI-driven software solutions to boost efficiency. * Cybersecurity – Safeguard your business with advanced security assessments and services. * Managed IT \& Application Support – Ensure seamless operations with proactive IT management and support.

We’re proud to work with industry leaders like Bosch, Douglas, WTS, DHL, Tatweer, and GOSI, and many others. Combining German precision with nearshore agility, we provide secure, scalable, and cost-effective IT solutions tailored to your business needs. Now we are looking for an Information Manager for our client. Key Responsibilities: 1. Security Operations \& Governance* Implement and maintain security policies, standards, and procedures to ensure alignment with business objectives. * Oversee the deployment and management of security tools (e.g., SIEM, firewalls, endpoint protection). * Develop and communicate a comprehensive security roadmap that supports organizational growth.

2. Risk Management \& Compliance* Conduct regular security risk assessments and vulnerability management programs. * Ensure the organization maintains compliance with relevant industry regulations and standards (e.g., ISO 27001, NIST, GDPR, or SOC2). * Manage third-party security assessments and vendor risk management.

3. Incident Response* Serve as the primary lead for the Incident Response team, coordinating efforts to detect, contain, and remediate security threats. * Conduct post-incident reviews to identify root causes and implement corrective actions. * Maintain and periodically test the organization’s Disaster Recovery and Business Continuity plans.

4. Security Awareness* Develop and deliver security awareness training programs to foster a "security-first" culture across the company. * Act as a subject matter expert, providing guidance to leadership on emerging cybersecurity threats.

Required Qualifications: Experience: 3–5 years of progressive experience in Information Security or Cybersecurity. * Technical Proficiency: Deep understanding of network security, cloud security (AWS/Azure/GCP), and security monitoring tools. * Compliance Knowledge: Proven experience in managing frameworks such as NIST, ISO 27001, or industry-specific compliance requirements. * Incident Management: Demonstrated ability to lead incident response activities in a high-pressure environment. * Soft Skills:* Strong analytical skills, excellent communication abilities, and the capacity to translate complex security risks into business language for stakeholders.