Qualifications:
- Bachelor's degree in a related field, such as Computer Science, Information Technology, or Cybersecurity
3+ years of experience implementing Compliance and Information Security management strategies- In-depth knowledge of information security standards, frameworks (e.g., ISO 27001 Lead Auditor / Lead Implementer, NIST Cybersecurity Framework), and regulatory requirements, preferred.
Strong analytical and problem-solving skills, with the ability to assess complex security issues and develop effective solutions.
- Ability to lead and influence cross-functional teams and foster a security-aware culture.
Excellent communication and interpersonal skills, with the ability to effectively communicate security-related concepts to technical and non-technical audiences.
Additional Requirements:
- Familiarity with relevant data protection regulations (e.g. DPA) and privacy principles.
Incident Response training
- Duties and responsibilities:
- Develop, implement, and maintain the organization's information security management system
Ensures that the organization complies with relevant laws, regulations, and industry standards related to information security, which includes monitoring changes in regulations and updating the ISMS accordingly.
- Regularly monitor and audit the effectiveness of the organization's information security controls to identify any weaknesses or areas for improvement.
Conducts risk assessments to identify potential vulnerabilities, threats, and risks to the organization's information assets.- Develop and implement risk mitigation strategies and controls to minimize the impact of potential security incidents.
Develop and implement metrics and KPIs to measure the effectiveness of the information security management system and report on progress to senior management
- Develop information security training programs to raise awareness and promote best practices among employees and conduct regular security awareness campaigns to educate employees about their roles and responsibilities in protecting information assets.
Lead and coordinate the organization's incident response activities in case of a security breach or information security and coordinate the response efforts, investigate the incident, and take appropriate actions to minimize the impact and prevent future occurrences.- Collaborate with different departments and stakeholders to promote a security culture; foster effective communication regarding information security matters.
Monitoring industry trends, emerging threats, and best practices to continuously enhance the organization's information security program.
- Identifying areas for improvement and recommending appropriate security measures and technologies.
Maintain up-to-date knowledge of industry standards and best practices related to information security management
Job Types: Full-time, Permanent
Benefits: Company events
Free parking Life insurance
Opportunities for promotion
Schedule: Day shift
Supplemental pay types:
* Performance bonus
