Information Security Officer

Role and Responsibilities

• Assist in the design and maintenance of ISMS and QMS based on the ISO/IEC 27001 & ISO 9001.
• Support in conducting training and awareness sessions on ISO 27001 and 9001 and create relevant PowerPoint presentations.
• Participate in internal audit activities in the organization with respect to ISO 27001:2013 and ISO 9001:2015.
• Assist in risk assessment based on ISO standards and help in the documentation and management of risk mitigation strategies.
• Use quality tools (such as Flowcharts, Check Sheets, Ishikawa Diagrams, Pareto Charts, Control Charts) to analyze processes and identify areas for improvement.
• Assist the team in developing audit reports; present audit reports to top management as needed.
• Ensure control of documents, records, and process change requests.
• Assure linkage between projects, business, and customer priorities using process improvement tools and methodologies.
• Serve as a facilitator between the external audit team (ISO certification body) and internal departments for smooth execution of audits and closure of all audit findings.

• Bachelor's Degree in a relevant field.
• Familiarity with ISO 27001 & ISO 9001 standards is preferred but not mandatory. Training in ISO standards will be provided.
• Excellent verbal and written communication skills, with the ability to prepare reports and communicate effectively with senior management.
• Open to learning new methodologies, improving skills, and staying up to date with industry standards and best practices.
• Basic knowledge of IT and cybersecurity.
• Process designing skills.