Vakansiyanın detalları
- Əmək haqqı: Razılaşma yolu ilə
- Kateqoriya: Mütəxəssis
- azərbaycan dili ingilis dili İSO
Vakansiyanın təsviri
- Manage enterprise information security governance, risk, and compliance strategies, programs and other related efforts to ensure that organizational processes and procedures follow organizational information security requirements.
- Participate in Organizational Risk Governance initiatives to provide support to Management on Risk Governance.
- Manage full life-cycle of organizational information security related documentation such as policies, standards, procedures, guidelines and their implementation.
- Develop and implement methodologies to identify, assess, measure and monitor information security risk, compliance, and assurance efforts. Perform security reviews, identify gaps in security architecture, and develop an information security risk management plan.
- Interpret patterns of non-compliance to determine their impact on the enterprise's levels of risk and/or the information security program's overall effectiveness.
- Document and manage an enterprise information security risk register prioritizing and managing information security risks throughout the system lifecycle.
- Ensures appropriate treatment of risk with defined controls, and control assurance monitoring per organizational security requirements.
- Oversees, evaluates, and supports the documentation, validation, and accreditation processes necessary to ensure new and existing information technology (IT) systems meet the organization’s information security requirements.
- Provide support/remediation guidance to all stakeholders on information security controls covering internal information security requirements, internal and external assessments, local legislation and requirements of regulator.
- Develop, plan, coordinate, deliver, and/or evaluate instructional cybersecurity content using various formats, techniques, and venues.
- Performs other job function related duties as assigned by Senior Management
- Perform periodic reporting to Senior Management on information security efforts and initiatives.
Xüsusi tələblər
- Bachelor’s Degree in Information Technology, Computer Science, Information Security or Applied Mathematic or at least 2 year experience in Information Security field.
- Knowledge of information security principles and organizational requirements to protect confidentiality, integrity, availability, authenticity, and non-repudiation of information and data.
- Knowledge of Personally Identifiable Information (PII) data security standards/requirements and data protection methodologies.
- Knowledge of Local Law and Regulatory requirements to information security of banking, payment, and processing systems.
- Knowledge of risk, compliance and assurance management activities.
- Knowledge of information systems auditing/assessment processes and procedures.
- Knowledge of system, network, software and data security architecture concepts.
- Knowledge of international information security frameworks and standards such as ISO/IEC 27001 family, NIST CSF, PCI DSS, SWIFT and others.
- 2+ years’ experience in Information Technologies, Telecommunication or İnformation Security sphere
- Azeri(fluent), English(fluent)
- Work experience with certain branches of state legislation (for example, branches of the Central Bank's payment institutions) is desirable.
- International certifications in Information Security such as CRISC, ISO 27001 LI is desirable.
Yeni vakansiyaları operativ almaq üçün Telegram-kanalımıza qoşulun
