Educational Qualifications

• Bachelor’s Degree / Master’s in IT or a relevant discipline. 
• Relevant certifications like CISSP, CEH, Security+, or specialized vendor certifications.

Skills Required:

• Deep knowledge of network security, operating systems, cloud security principles, and cryptographic protocols. Hands-on experience with security tools like SIEM, vulnerability scanners, and endpoint detection and response (EDR).

Trainings:

• CISSP, CEH, Security+

Brief Job Description:

• Responsible for designing, implementing, and maintaining security controls and systems to protect company data, while also managing risk assessments and mitigation strategies in alignment with ISO 27001 standards.

Key Responsibilities:

• Develop and maintain security architecture and controls (e.g., firewalls, encryption, access management).
• Conduct regular vulnerability assessments and penetration tests to identify and prioritize security weaknesses.
• Conduct regular risk assessments and maintain the risk register.
• Identify, evaluate, and mitigate information security risks.
• Perform vulnerability scans and penetration testing.
• Monitor and respond to security incidents and breaches.
• Support internal and external audits with technical evidence.
• Collaborate with IT, compliance, and business units to ensure ISMS effectiveness.
• Stay updated on emerging threats and recommend proactive measures.

Educational Qualifications:

• Bachelor in IT, Business Admin or a relevant discipline.

 Skills Required:

• Detail-Oriented: Exceptional attention to detail and organizational skills.
• Process Knowledge: Understanding of document management principles and workflows.
• Tool Proficiency: Experience with DMS software, SharePoint, or other document control systems.

Trainings:

• Document Management Systems and Compliance and related trainings.            

Brief Job Description:

• Manages all ISMS documentation and records, assist in internal and external audits, and coordinates security awareness training to ensure ISO 27001 compliance across the organization.

Key Responsibilities:

• Maintain and control ISMS documentation (policies, procedures, records).
• Ensure version control, traceability, and proper retention of documents.
• Plan and execute internal audits of ISMS processes and controls.
• Assist the audit team by retrieving and presenting required documented evidence during internal and external audits.
• Coordinate and deliver security awareness training programs.
• Track training participation and effectiveness.
• Support audit preparation and evidence collection.
• Facilitate document reviews, approvals, and updates.