Full-Time Information Security and Compliance Officer

Information Security and Compliance Officer

Purpose: Maintain effective risk management, ensure ongoing certification, manage ISMS, and work with CISO.

Responsibilities:

• Liaise with IT, Cloud Operations, R&D, Product Development, and managers on security matters.
• Lead Penetration Testing oversight and technical reviews.
• Implement, operate, support, and maintain the Information Security Management System.
• Prepare and implement information security policies, procedures, and guidelines.
• Support compliance monitoring and improvement activities.
• Support information security awareness, training, and risk assessments.
• Maintain compliance with internal security policies and laws/regulations.
• Support project implementation and ISMS maintenance.
• Organize and conduct Internal Information Security Audits.
• Ensure compliance with ISO 27001, ISO2017, SOC1, SOC2, C5, and ISO9001 standards.
• Liaise with globally geographically spread SMEs and participate in monthly ISMS meetings.
• Work autonomously to meet role requirements.

Skills required:

• 5+ years of professional experience in IT or audit roles.
• 2+ years demonstrable experience of a certified ISMS.
• Graduate level degree.
• Strong English communication skills.
• Knowledge of EU DORA, EBA, NIS2, C5 regulations.
• Experience with security risk assessments and remediation efforts.
• Understanding of SDLC and Information Technology.
• Experience managing Penetration Testing.
• Understanding of end-to-end business processes.
• Experience in fast-paced international company.
• Experience with ISO9001 is desirable
• CISSP, CISA, CISM, CRISC certifications are valued

What is the last date for applying to the job?

Which countries are accepted for this remote job?