Information Security Analyst

Job Description:

You will be working collaboratively with the Information Security Team in managing cybersecurity risk and compliance. You will play a pivotal role in ensuring the organization's adherence to standards, internal policies and regulatory requirements. Managing risk and maintaining a robust governance framework. You will have an opportunity to develop your skills across broad range of technical, security, risk and compliance related efforts.

Required Skills:

Working knowledge with ISO/IEC 27001 standards, NIST frameworks, and data protection laws

Develops and maintains ISMS policies, standards and procedures

Implements security controls, risk assessment frameworks that aligns to the ISO/IEC 27001 standards and regulatory requirements

Evaluate risk and develop security standards, procedures and controls to manage the risk

Documents and reports control failures and gaps

Working knowledge on information systems auditing, monitoring, controlling and assessment process

Working knowledge of malware detection, analysis, and evasion techniques

Good communication and interpersonal skills to work effectively with cross-functional teams

Deliver security awareness training program to educate employees on risk, compliance and fostering a culture of awareness and accountability

Work Experience:

At least 2–3years experience in cybersecurity, information technology audit, or GRC focused roles

Relevant work experience on information systems audit

2–3years experience in the related field

Certification in the following is a plus factor

ISO 27001 Lead Auditor

ISO 27001 Lead Implementer

Certified in Cybersecurity

Certified in ISMS Risk Management

Certified in ISMS Foundation

Certified Information Systems Security Professional