The Regional IT and Information Security Manager is responsible for implementing a mature approach to IT and Information Security within the region. This involves building strong relationships with regional management, Project teams, and the Group IT and Information Security function to effectively manage technology and information security risks. Additionally, the role includes ensuring that information security is integrated into the regional work culture and providing support to clients, partners, and employees to fulfill their information security responsibilities. As a member of the regional digital team, the Regional IT and Information Security Manager will develop a deep understanding of the regional business needs and identify opportunities to improve the use of technology and the information security of digital solutions. The role also involves promoting awareness of IT and information security within the regional business to influence a positive digital culture. Key Responsibilities: * Build strong relationships with regional management, Project teams, and the Group IT and Information Security function to effectively manage technology and information security risks. * Lead a regional team of technology and information security professionals by fostering a culture of continuous learning and professional growth. * Effectively communicate technical and behavioural information security requirements, along with their underlying rationale and benefits. * Consult and agree on the design and implementation of the regional information security program with the Group Head of IT and Information Security. * Manage regional information security risks and implement risk mitigation plans as agreed with the Group Head of IT and Information Security. * Lead regional information security incident management and response activities. * Develop regional IT and information security metrics and reporting frameworks. * Implement measurable security awareness and training programs. * Conduct ISO27001 audits and evaluate the alignment of security controls as defined in the Information Security Management System (ISMS). * Collaborate with group and regional management to formulate and implement regionally specific information security policies and standards. * Ensure completion of mandatory training and maintain high levels of information security awareness by curating regionally appropriate content and organising regular communications for employees at all levels. * Guide client facing project managers in completing Information Security Risk Assessments and assure the appropriate information security controls are implemented. * Provide responses to customer security questionnaires and coordinate agreed security controls for high-risk regional suppliers, partners, and subconsultants. * Maintain existing information security certifications for the region and work with regional management to ensure compliance with relevant information security standards and the ISMS. * Provide architectural and security guidance on new and innovative digital infrastructure (IT) solutions that enable achieving business & Digital objectives. * Ensure all regional digital infrastructure (IT) support needs are met through timely incident resolution, request fulfilment and by guaranteeing all service delivery targets are achieved. * Manage all regional onboarding and offboarding activities. * Manage the lifecycle of all regional Digital assets. Essential Candidate Requirements: * Understand group and regional business operations and analyse information security risks. * Communicate complex information security issues in an easily understandable manner. * Build credibility and relationships with stakeholders, including regional management and external information security authorities. * Be a