Support the design and implementation of BizLink information security program
Coordinating compliance with customer and legal requirements
Coordinating and overseeing internal and external information security audits
Supporting policy, standard, and procedure development
Performing information security risk assessments
Educating and training cross-functional colleagues on security topics
Based on personal preference and experience responsibilities can focus on different barts of the security program, such as security culture. vulnerability management, product security, incident management, or business continuity planning
Facilitating the performance and testing of our annual disaster recovery tests and business continuity plans.
Job Requirement :
At least 3 years of relevant professional experience
Strong knowledge of information security concepts
Thorough understanding of and experience implementing ISO 27001
Strong knowledge of industry best practices and relevant control frameworks (e.g. ISO 27002, NIST, CIS, or similar)
Experience building a security program or one of its core components
Experience performing information security risk assessments (ISO 27005, FAIR, or similar)
Fluency in English and readiness to work in an international team
Strategic, risk-based thinking and commitment to continual learning and personal growth
Proactive, structured, and team-oriented work ethic
Certifications such as ISO 27001 LI/LA, CISM, CISA, CRISC, or CISSP are a plus
Experience in information security processes automation is a plus
Knowledge on cloud security and threat modelling (e.g. STRIDE) are a plus
