2 views
NDA Recruitment
Main responsibilities
Formation, implementation and support of policies, procedures and regulations in the field of information security.
Identification, assessment and updating of risks related to processes, IT assets and company projects.
Conducting Business Impact Analysis (BIA) for key business processes.
Development and testing business continuity plans (BCP) and disaster recovery plans (DRP).
Control of compliance with the requirements of ISO 27001, ISO 22301 and other information security and risk management standards.
Preparation of documents and active participation in internal and external audits.
Implementation of measures to increase the maturity of the information security management system (ISMS).
Ability to structure documentation, work with risk registers, manage compliance processes.
Experience working in a GRC function or in consulting projects on the implementation of security systems.
Will be an advantage
Knowledge of NIST CSF, SOC 2, PCI DSS or others frameworks.
Experience of interaction with technical and business teams in complex IT environments.