We look for someone with cybersecurity background, someone that has done it in the past. At least 3-5 years of experience.
- Review audits
- create the list of fixes
- have a permanent eye in the system
- do internal pen testing - they use an outsourcing company for pen testing but this cabndidate needs to understand the pen testing proceedures.
- Guarantee security improvement
- Open minded team
- this person will be really autonomous, can pick the technologies and best practices he/she likes
- There is a solid documentation guidelines but everything else is up to him/her