Implement and maintain information security management systems.
Prepare, train, and document information technology security policy/procedure/instructions based on international standards and advanced requirements.
Define and maintain strategies, frameworks, and methods for assessing, responding, and monitoring information technology security risks in consultation and cooperation with organizational units.
Define and maintain strategies, frameworks, and methods for evaluating, responding to, and monitoring risks related to privacy.
Identify, analyze, and evaluate the organization's current and future threats and create and maintain an overview of the risks and threats of the organization's technology environment (creating and maintaining the organization's security risk profile).
Identify, value, and maintain assets and services and assess technical risks.
Communicate and interact with organizational units to follow up on technical measures and solutions
Requirements
Bachelor's degree in Information Technology, Computer Engineering, or other related fields.
License: Network+, Security+, ISO/IEC 27001, and PCI-DSS.
At least 3 years of work experience in IS implementation and auditing and other related fields.