Information Security Manager

The Information Security Manager reports to the SVP of Infrastructure. This role will support the implementation of Toku’s security strategy. He/she ensures that Toku’s systems and networks meet the company’s security requirements and are periodically updated to address any security vulnerabilities. He/she responds to events and assesses whether these are security incidents and the severity levels of security incidents.

• Designing, driving and implementing a security strategy that supports the corporate objectives and Toku’s overall growth while efficiently securing Toku’s data and critical assets.
• Providing challenge and assessment of potential technology risks including information and cyber security control weaknesses.
• Introducing security best practices, and providing sound recommendations as well as strategic directions to increase the effectiveness of Toku’s organization and offering.
• Managing security projects and providing guidance on security matters for other projects.

• Assisting and guiding the disaster recovery planning team in the selection of recovery strategies and the development, testing and maintenance of disaster recovery plans.
• Ensuring audit trails, system logs and other monitoring data sources are reviewed periodically and are in compliance with policies and audit requirements.
• Designing, coordinating and overseeing security testing procedures to verify the security of systems, networks and applications, and manage the remediation of identified risks.
• Working as a liaison with vendors and the legal and procurement departments to establish mutually acceptable contracts and service-level agreements.
• Helping various stakeholders to identify information asset owners to classify data and systems as part of a control framework implementation.

• Serving as an active and consistent participant in the information security governance process.