کارشناس ISMS

افرانت تهران

منتشر شده 10 ماه پیش

Job Description

  • Engineering, implementing, and monitoring security measures for the protection of computer systems, networks, and information.
  • Identifying and defining system security requirements.
  • Explaining the requirements, documentation, and implementation of an Information Security Management System (ISMS) based on ISO 27001:2013.
  • Designing system security architecture and developing detailed security designs.
  • Developing technical solutions and new security tools to help mitigate security vulnerabilities and automate repeatable tasks.
  • Ensuring that the company knows as much as possible, as quickly as possible about security incidents.
  • Writing comprehensive reports including assessment-based findings, outcomes, and propositions for further system security enhancement.
  • Taking action to respond to security incidents.
  • Protecting the system by defining access privileges, control structures, and resources.
  • Recognizing problems by identifying abnormalities; reporting violations -Implement security improvements by assessing the current situation, evaluating trends; and anticipating requirements.
  • Determining security violations and inefficiencies by conducting periodic audits.
  • Keeping users informed by preparing performance reports, and communicating system status.
  • Maintaining quality service by following organization standards.
  • Making a contribution to effective teamwork by accomplishing related results as needed.
  • Ensuring that information security controls are in place and monitored regularly for compliance with established set policies and standards.

Requirements

  • Bachelor's or Master's degree in IT, Computer Engineering, or related fields.
  • At least 3 years of related job experience.
  • Advanced knowledge of Open Source Security Products.
  • Deep hands-on experience in information security.
  • Experience in ISO27001 and ISO27002 or other comparable audit experience.
  • Good documentation skills.
  • Excellent problem-solving skills.
  • Strong communication and negotiation skills in order to develop client relationships.
  • Passion for information security.
  • Fluent in Information Security Certifications (Security+, CCNA Security, CCNP Security, LPIC 2, ISO 27001:2013 Lead Auditor, CEH) are considered a plus.
  • Good command of English.
  • Ideal age range: 25 to 35 years.

برای مشاهده‌ی شغل‌هایی که ارتباط بیشتری با حرفه‌ی شما دارد،