About the Role
Are you a cybersecurity professional seeking a challenging opportunity to contribute to the protection of sensitive information?
We are currently seeking an experienced Security Analyst to join our team. In this role, you will be responsible for maintaining the currency of our Information Security Management System (ISMS) and ensuring its compliance with relevant standards.
Your Key Responsibilities
1. Maintain the ISMS, including updating policies, procedures, and controls as required.
2. Work with business stakeholders to ensure ongoing ISO compliance and lead the coordination of security assurance activities for our products and services.
3. Monitor and review ISMS-related policies, procedures, standards, and controls to ensure they align with business objectives and regulatory requirements.
4. Participate in regular internal audits and risk assessments of the ISMS and coordinate actions required to address findings and recommendations.
5. Support external audits and certification activities related to the ISMS and ISO.
6. Provide guidance and advice to business units and stakeholders on the implementation and continuous improvement of the ISMS and ISO.
7. Lead and facilitate security scoping activities for new and existing products and services, ensuring that security requirements are identified and addressed.
8. Work with third-party partners to coordinate security assurance activities such as security testing for validation of products and services.
9. Investigate and respond to security incidents and breaches, following the incident response process and procedures.
About You
* Bachelor's degree in computer science, information security, or a related field, or equivalent work experience.
* Minimum of one year of experience in information security, preferably in a security analyst role.
* Solid understanding of ISMS framework and the ISO standard, and ability to apply them in a practical and effective manner.
* Solid knowledge of security principles, technologies, and best practices, such as encryption, authentication, firewalls, VPN, SIEM, vulnerability scanning, penetration testing, etc.
* Certification in information security, such as CISSP, CISM, CISA, or ISO Lead Auditor/Implementer.
* Experience in cloud security, DevSecOps, agile methodologies, and project management.
Why Join Us
We offer a dynamic and supportive work environment where you can grow your skills and expertise. Our team is passionate about delivering high-quality solutions that make a real difference in people's lives.