Information Security Officer (ISO 27001)
About The Position
Key Responsibilities: Develop, implement, and maintain the organization’s information security strategy, policies, and procedures Identify, assess, and manage cybersecurity risks and vulnerabilities Monitor security systems and respond to incidents, breaches, and threats in a timely manner Ensure compliance with relevant laws, regulations, and industry standards (e.g., GDPR, ISO 27001, 27701 NIST) Conduct regular security audits, risk assessments, and penetration testing Collaborate with IT and other departments to ensure secure system design and operation Lead incident response and forensic investigations when necessary Provide security awareness training and guidance to employees Manage third-party security risks and vendor assessments Prepare reports and present security posture updates to senior management Required Qualifications: Bachelor’s degree in Information Security, Computer Science, or a related field Proven experience in information security, cybersecurity, or IT risk management Strong knowledge of security frameworks, standards, and best practices Experience with security tools such as SIEM, IDS/IPS, firewalls, and endpoint protection Understanding of network architecture, operating systems, and cloud security Relevant certifications preferred (e.g., CISSP, CISM, CISA, CEH) Key Skills: Strong analytical and problem-solving abilities Excellent communication and leadership skills High level of integrity and attention to detail Ability to handle sensitive information with confidentiality Strong project management and organizational skills
Requirements
- Bachelor’s degree in Information Security, Computer Science, or a related field
- Proven experience in information security, cybersecurity, or IT risk management
- Strong knowledge of security frameworks, standards, and best practices
- Experience with security tools such as SIEM, IDS/IPS, firewalls, and endpoint protection
- Understanding of network architecture, operating systems, and cloud security
- Strong analytical and problem-solving abilities
- Excellent communication and leadership skills
- High level of integrity and attention to detail
- Ability to handle sensitive information with confidentiality
- Strong project management and organizational skills
Nice To Haves
- Relevant certifications preferred (e.g., CISSP, CISM, CISA, CEH)
Responsibilities
- Develop, implement, and maintain the organization’s information security strategy, policies, and procedures
- Identify, assess, and manage cybersecurity risks and vulnerabilities
- Monitor security systems and respond to incidents, breaches, and threats in a timely manner
- Ensure compliance with relevant laws, regulations, and industry standards (e.g., GDPR, ISO 27001, 27701 NIST)
- Conduct regular security audits, risk assessments, and penetration testing
- Collaborate with IT and other departments to ensure secure system design and operation
- Lead incident response and forensic investigations when necessary
- Provide security awareness training and guidance to employees
- Manage third-party security risks and vendor assessments
- Prepare reports and present security posture updates to senior management
Benefits
- 401(k)
- Dental insurance
- Health insurance
- Life insurance
- Vision insurance
- Paid holidays
- Paid time off
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Mid Level
