Get this opportunity!
Be that ONE!
Information Security Senior Specialist
PURPOSE OF THE POSITION:
Contributing in the maintenance and improvement of the ISMS and BCM programs based on ISO 27001, ISO 22301 and Albanian Legislation/s. Follow and implement ISMS and BCM processes and procedures to be used in the local ISMS and BCM programs including the development of ISMS, BC, IT DR, Network DR and Contingency planning, identification of local contingency facilities and requirements. This position works in active cooperation with all team members.
Main Tasks:
Create and Protect Companys information/assets via proper assessing of security controls to maintain Confidentiality, Integrity and Availability of the Companys assets and information /assets.Propose solutions to IT security vulnerabilities, and coordinate with IT/business units for activities that needs to be performed in order to correct /prevent IS vulnerabilities until closure.Assess and mitigate any IT security related findings of any type of audit report: ISO 27001 Audit Report, Group Report, Internal Audit Report, Internal Control Audit, etc.Reports on IT security performance results, audits, and make recommendations and on end user activity audits.Prepare reports regarding potential IT security vulnerabilities by assessing and analyzing periodically information security related system data (ex: from Log Event Management Tools, SIEM, Exchange & AD Auditing Tools, firewall, antivirus system, IDS, etc.Collaborate continuously with other Company Teams Audit / IT teams/etc. in case an information security related analysis and control needs to be performed in order to help on any raised information security investigative issue.Support the Cyber Security team in a proper management of the Penetration testing activities conducted in the company.Support other IT Group Managers for BCP (Business Continuity Procedures) to be defined, tested and validated.Carry out any other tasks assigned by the line manager and in accordance with the job responsibilities.Hands-on experience in the administration Microsoft Active Directory Domain Services (AD DS), and Azure Active Directory Domain Services (Azure AD DS) is required.Hands-on experience in Security Operation Center operational activities.Proven hands-on experience in the administration of Microsoft 365 and Azure security services is required; Experience with M365 Defender and M365 Security and Compliance is desirable.Microsoft 365 Certifications are an advantage such as: Microsoft Certified Cybersecurity Architect Expert; Microsoft 365 Certified Security Administrator Associate, Microsoft Certified Identity and Access Administrator Associate.
Education: University Degree in Electronics/Computer Sciences/Informatics.
Experience and Qualifications:
At least 3 years working experience in IT or GSM environment, preferably networking/systems implementation or maintenance profile;
Active participation on System/Computer Networks implementations, configurations.
Skills:
Good communication and presentation skills.English Language well spoken and written.Confidentiality, loyalty and flexibility, credentials such as ISO27001 Lead/Internal Auditor, CompTIA Security+, CC, CISSP, CISM, BCCP, BCCS are considered an advantage.
Interested candidates should apply by sending an email at: https://jobs.one.al/jobs/detail/info...pecialist-4410
Deadline for the application is February 1st, 2024.
We will be glad to interview all candidates selected from the CV screening.
HR GROUP
Apliko