Information Security Analyst at InfoHob

Job overview

• Our Security Operation Center is responsible for monitoring and managing security related events and incidents within the enterprise.
• Our security team works closely with our Cloud, IT and Network operations teams to resolve complex security problems and improve the overall security posture of for our company and our customers. 

Responsibilities: 

• Responsibility for our ISMS as well as it’s further development.
• Leading all internal and external ISMS audits on behalf of the organization.
• Ensure the company continually complies with ISO 27001, ISO 27017, PCI-DSS standards. 
• Collaborate with the legal department and other stakeholders to ensure compliance with GDPR and NDPR.
• Managing the daily operations of the organization’s Security Operations Center such as Security 
• Investigating and Monitoring, Incident Response and Vulnerability Management.
• Creating and implementing information security policies and standards.
• Conducting security risk assessments, both at the enterprise and system levels.
• Designing and implementing new security controls.
• Collection of information security metrics and reporting on the performance of the ISMS to Top Management.
• Implementing and tracking the effectiveness of the organization’s Information security awareness program.

Requirements: 

• Hands on experience implementing ISO 27001 standard in an organization.
• Experience with security solutions including SIEM, EDR, IDS/IPS and Vulnerability Scanning. 
• Familiarity with various Information Security standards e.g. ISO 27001, PCI-DSS, GDPR and NDPR.
• Platform experience with AlienVault, Sophos Central and Nessus could be a bonus.
• Exceptional troubleshooting and problem-solving skills.
• Strong documentation, communication, and presentation skills.
• Sound knowledge of the industry, and active following on relevant OEMs on social media.
• Ability to identify gaps and drive process improvements.
• Proactive in engaging with customers, client executives and other Engineering units.
• Strong problem-solving skills: ability to assess a problem and determine an effective course of action.
• Ability to work efficiently in a fast-paced working environment.
• Shows initiative, flexibility, and resourcefulness.

Qualification and Experience

• A bachelor’s or Master’s degree in Cyber Security, Computer Science, or related degree.
• 3 - 5 years of relevant experience in Information Security.
• One or more of following certifications: CISSP, CISM, CISA, CCSP, CySA+, ISO 27001.
• Experience demonstrating management and leadership experience, preferably in an information Technology and Security environment.
• Strong operational, project management, consulting technology and process skills.
• Industry knowledge of relevant solutions sets, product line specifications, performance criteria and applications.
• Excellent time management, particularly the ability to effectively prioritize and execute tasks in line with business objectives.