We are seeking a skilled Information Security GRC Specialist to join our organization. This role will be pivotal in maintaining and enhancing our ISO 27001 Information Security Management System (ISMS).
Job Description
This is an exciting opportunity for a senior information security or risk and compliance professional to drive security GRC initiatives across the business. As a key member of our security team, you will contribute to various information IR/security-related projects as the GRC Subject Matter Expert (SME) as required.
* Manage and enhance the ISO 27001 ISMS and any future frameworks.
* Provide guidance, recommendations, and support to internal and external stakeholders on security and privacy initiatives, including regulatory compliance and vendor security assessments.
* Develop and implement policies and procedures to strengthen information security and privacy efforts.
Required Skills and Qualifications
To be successful in this role, you will need:
* Hands-on experience in implementing and managing an ISO 27001 ISMS.
* Demonstrated expertise in a senior information security or risk and compliance role.
* At least five years of experience in risk, compliance, or information security-related fields.
Benefits
You will be joining a well-established security team that already has a high capability. The organization is ISO 27001 2022 compliant and has a friendly yet high-performing team culture.
Others
The ideal candidate will have a strong understanding of various technologies, including infrastructure and software development practices, and comprehensive knowledge of information security methodologies, tools, controls, policies, and frameworks.