We are looking for an information security specialist who can provide system work in the IS field of a large company, performing the following functions: Comprehensive organization and control of work to ensure the security of the information space, information resources and critical information. Organization and participation in activities for regular monitoring of information systems and web- of the company's applications in order to identify vulnerabilities, attacks and minimize their impact.
We are looking for an information security specialist who can provide system work in the IS field of a large company, performing the following functions: Comprehensive organization and control of work to ensure the security of the information space, information resources and critical information. Organization and participation in activities for regular monitoring of information systems and web- of the company's applications in order to identify vulnerabilities, attacks and minimize their impact. Organization of the procedure for handling critical information (trade secrets, confidential information, personal data, etc.) and control of implemented procedures. Organization and control of the security of premises and equipment included in the critical infrastructure (zones special security).Managing the process of controlling access to information resources, including to privileged users. Keeping a log of IS incidents, performing the functions of an IS administrator. Assessment and analysis of IS risks. Preparation and direct participation in the company's international certification for compliance with ISO/IEC27001 requirements. investigation of IS incidents, other collegial and advisory bodies of the company. Qualification requirements: Knowledge of a set of standards for ensuring information security of the ISO/IEC 27000 group of standards (27001, 27002, 27005, etc.) and the ability to practically implement them in a large business. Knowledge of regulatory and normative-technical documents in the field of KSZI, KZI and TZI is also welcome. Knowledge of standards for ensuring the audit of COBIT information systems. Knowledge of the ITIL IT service management methodology. Work with security systems: DLP, SM-systems, specialized software ( Burp Suite Professional, etc.).Management of regulatory documentation SUTerms: Official employment in the state Five days (Monday - Friday), from 9 a.m. to 6 p.m. your resume and indicate the desired level of payment, we will call you and arrange an interview.