Information Security Officer (ISO 27001)

Job description

Key Responsibilities: - Develop, implement, and maintain the organization’s information security strategy, policies, and procedures - Identify, assess, and manage cybersecurity risks and vulnerabilities - Monitor security systems and respond to incidents, breaches, and threats in a timely manner - Ensure compliance with relevant laws, regulations, and industry standards (e.g., GDPR, ISO 27001, 27701 NIST) - Conduct regular security audits, risk assessments, and penetration testing - Collaborate with IT and other departments to ensure secure system design and operation - Lead incident response and forensic investigations when necessary - Provide security awareness training and guidance to employees - Manage third-party security risks and vendor assessments - Prepare reports and present security posture updates to senior management Required Qualifications: - Bachelor’s degree in Information Security, Computer Science, or a related field - Proven experience in information security, cybersecurity, or IT risk management - Strong knowledge of security frameworks, standards, and best practices - Experience with security tools such as SIEM, IDS/IPS, firewalls, and endpoint protection - Und...