Assists in the analysis and implementation of security requirements on business requirement.
Provide technical and quality oversight regarding IT risks, controls and technologies, including ongoing risk assessments, risk decisions, control implementation, evaluation of segregation of duties, and process improvement opportunities
Collaborate with Technology Compliance on IT Risk Management, IT Vendor Risk management, and the ongoing evaluation and updating of IT Policies and procedures.
Collaborate with key stakeholders across the organization to ensure that our high-risk vendors are assessed on a frequent basis.
- Implement or manage compliance framework (ISO 27001/2) and SOC2 controls and processes into an actionable and well-understood program where control owners are aware of their ownership of controls.
- Coordinates and manage and assist in conducting internal and external audits.
- Communicate security requirements and implications to stakeholders of varying levels and business focus and manage all employee and business process compliance activities for the entire company.
- Assist in the preparation of executive presentations and participate in recurring security governance oversight meetings.
- Contributes and assists in all DevSecOps and SecOps activities such as vulnerability & patch management, SOC operations and BCP/DR etc.
Assist in conducting security awareness training and run the campaigns as per schedule.
Requirements
Requirements
- Bachelors or Master s degree in a related field is required; information systems, computer science preferred.
- Minimum experience of zero to one year in information security domain
- Eager to learn new technologies, ready to take the new challenges and able to work on guidelines (no spoon-feeding).
- The role demands equal interest in technical and compliance requirements.
- Solid communication skills, including a proven ability to articulate to others outside Compliance complex IT risks, their impact, and the required action plans to address those risks
Benefits
- Ability to cope in a complex and fast-changing business environment, and to respond calmly and rationally to changing aspirations in a deadline-driven situation.
- Strong planning and organizing skills including the ability to manage several work streams simultaneously.
- Excellent communication skills with a capacity to present, discuss and explain issues coherently and logically both in writing and verbally.
- Good team player, self-motivated and able to work on own initiative.
Requirements Bachelor's or Master s degree in a related field is required; information systems, computer science preferred. Minimum experience of zero to one year in information security domain Eager to learn new technologies, ready to take the new challenges and able to work on guidelines (no spoon-feeding). The role demands equal interest in technical and compliance requirements. Solid communication skills, including a proven ability to articulate to others outside Compliance complex IT risks, their impact, and the required action plans to address those risks