• Act as the primary point of contact for all information security matters.
• Conduct regular reviews and updates of security policies to ensure compliance with industry standards.

• Oversee vulnerability scanning and penetration testing by third-party vendors.
• Conduct risk assessments to identify potential security risks and recommend mitigation strategies.

Incident Response and Security Configuration

• Develop and implement incident response plans for managing security breaches.
• Manage security configuration for systems and networks to ensure optimal protection.

• Host regular seminars and training sessions to raise security awareness among employees.

• Work closely with IT and other departments to integrate security practices into all operations.
• Maintain documentation of security policies, procedures, and incident reports for compliance.

• Educational Background: Bachelor’s degree in Information Security, Computer Science, or a related field. Relevant certifications (e.g., CISSP, CISM, CEH) are preferred.
• Experience: 3+ years of experience in information security, with a focus on policy development, vulnerability management, and security awareness training.
• Technical Knowledge: Strong understanding of information security frameworks, vulnerability assessment tools, and incident response protocols.
• Analytical Skills: Excellent analytical and problem-solving skills, with the ability to assess complex security issues and develop effective solutions.
• Communication Skills: Strong verbal and written communication skills, with the ability to convey technical concepts to non-technical audiences.
• Proactive Attitude: A self-starter with a proactive approach to identifying and addressing security challenges.
• Team Player: Ability to work independently and collaboratively within the IT Service Team and across the organization.