Full-Time Information Security Analyst

This position implements and improves administrative and technical controls of the company's Information Security Management System (ISMS). The role requires understanding the risk assessment process, contributing to action plan development, and promoting control implementation and evolution.

Key accountabilities:

• Contribute to implementing the global ISMS (based on ISO27001) over the region.
• Evaluate compliance status of processes and technology implementations, planning actions to align with the security framework.
• Identify information security risks in the technical environment, third-party relationships, or any company context component.
• Understand technical and administrative controls (networking, operations, access management, SSDLC, cloud security, endpoint protection, physical security, third-party risk assessment, organizational security, legal compliance).
• Act as a point of contact for third-party information security questions.
• Analyze client requirements regarding information security, evaluating accuracy, and following up on compliance actions.
• Identify security threats and risks affecting information confidentiality, integrity, or availability.
• Assist in defining security measures to mitigate identified risks.
• Independently solve low-complexity issues; escalate complex issues.
• Contribute to awareness material development, delivery, and measurement.
• Ensure compliance with security frameworks and legislation.
• Investigate technologies to improve security baseline and compliance (e.g., DLP, endpoint protection, network security, security and vulnerability assessments).

Minimum Qualifications:

• Bachelor's degree in Computer Science, Computer or Systems Engineering, or equivalent.
• Minimum 5 years of experience in related positions.
• Solid knowledge of security in networking, cloud, infrastructure configuration, endpoint protection, and SDLC.
• Knowledge of ISO 27001/2, SOC2, NIST-800 standards.

Qualities:

• Strong communication and social skills.
• Ability to present findings confidently to both technical and non-technical audiences.
• Self-directed, resourceful, critical thinker with attention to detail and proactive problem-solving skills.
• Ability to self-organize and plan activities with commitment to results.
• Ready to learn new content from others and independently.
• Looking for self-improvement and suggesting improvements to processes.

What is the last date for applying to the job?

Which countries are accepted for this remote job?