IT Security Specialist, IT

Overview

Responsibilities

1. Conduct thorough risk assessments to identify, assess, and mitigate potential vulnerabilities, ensuring alignment with industry standards and frameworks.
2. Review client requirements and contract addendums to ensure compliance with contractual terms and internal policies.
3. Perform vendor risk management, including due diligence to assess the security posture of vendors and their compliance with contractual and regulatory obligations.
4. Ensure the maintenance of the asset inventory, ensuring it is up to date and accurately reflects the current state of all assets.
5. Conduct periodic reviews of security tools, including but not limited to SIEM, XDR, and patch management systems, to ensure that all infrastructure remains compliant with security standards.
6. Collaborate with cross-functional teams to effectively implement security and compliance requirements across the organization.
7. Perform regular audits to verify compliance with internal policies, client requirements, and applicable regulatory standards.
8. Implement and oversee Business Continuity and Disaster Recovery (BCDR) policies to ensure minimal downtime and prompt recovery in the event of disruptions.
9. Review and manage access control processes, ensuring access rights are regularly audited and aligned with the principle of least privilege.
10. Lead investigations and reviews of security incidents, ensuring proper documentation, resolution, and follow-up actions are taken.
11. Support Business as Usual (BAU) operations, ensuring that all user and client-related issues and requests are addressed promptly and in accordance with security protocols.
12. Conduct vulnerability assessments (VA) on a regular basis and ensure remediation of identified vulnerabilities according to company policies.

Qualifications

• IT Security Governance
• Excellent written and oral communication skills
• ISO 27001/2 LI/LA

Reporting Time