Information Security Expert

Are you passionate about safeguarding information in a dynamic business environment? Our Client is looking for a Senior Information Security Expert to join our team and take a key role in maintaining the confidentiality, integrity, and availability of our information systems. If you have a strong technical background and a deep understanding of cybersecurity principles, this is the opportunity for you!

Key Responsibilities:

• Security Management: Lead and participate in activities to achieve network and information security across the organization, aligning with our regulatory requirements, policies, and security goals.
• Compliance Monitoring: Oversee the implementation of regulatory requirements, standards, and internal policies related to network security, personal data protection, and risk management.
• Policy Implementation: Ensure adherence to information security policies, procedures, and guidelines. Conduct internal audits to assess compliance and suggest improvements as needed.
• Data Protection: Educate and inform data owners, controllers, processors, and partners about their rights and responsibilities regarding data protection.
• Cybersecurity Strategy: Collaborate in designing and implementing the companys cybersecurity strategy, policies, and procedures to maintain a robust security posture.
• Training and Awareness: Develop and conduct staff training programs to enhance awareness and cultivate a culture of cybersecurity and data protection within the organization.
• ISMS Implementation: Play a key role in implementing and maintaining an Information Security Management System (ISMS) in line with ISO 27001:2017 standards.

Qualifications:

• Experience: Minimum 3 years of experience in Information Security and a strong technical background in Network or System Administration.
• Education: A degree in Computer Science, Software Engineering, Information Systems, or equivalent experience.
• Expertise: In-depth knowledge of Information Security, IT systems, and Networking principles. Hands-on experience with endpoint security, identity management, and personal data protection.

Key Skills:

• Communication: Excellent written and spoken English communication skills.
• Business Insight: Ability to integrate business strategy and models with legal, regulatory, and compliance requirements.
• Compliance Knowledge: Strong understanding of legal, regulatory, and industry standards, best practices, and recommendations.
• Security Mindset: Ability to enable business objectives through a security-first approach.

Advantages:

• Certifications: Masters degree or certifications in Information Security, such as CISSP, CISM, or ISO 27001.
• ISMS Expertise: Experience in implementing ISMS according to ISO 27001 standards, with an Internal Auditor certification being a significant plus.
• GDPR Knowledge: Good knowledge of GDPR and other data protection regulations is a strong advantage.

Soft Skills:

• High service orientation with strong communication abilities.
• Professional and team-oriented with a flexible, proactive approach.
• Ability to work under pressure while maintaining a structured and solution-oriented mindset.