Responsibilities:

• Lead and manage IT security audits and assessments across the organization
• Prepare and respond to security questionnaires from clients and stakeholders
• Track cybersecurity regulatory forms, compliance deadlines, and monitor industry-related updates
• Manage ISO 27001 certification, including audits, corrective actions, and continuous updates
• Collaborate with internal teams and external vendors to ensure security protocols are maintained and up to date
• Stay informed on the latest cybersecurity protocols, software, and solutions
• Provide regular compliance updates to management and identify potential risks
• Assist in developing and maintaining security policies, procedures, and supporting documentation

Required Qualifications:

• Bachelor’s degree in Cybersecurity, Information Technology, or a related field (or equivalent experience)
• Strong understanding of ISO 27001 and its implementation processes
• Familiarity with popular cybersecurity protocols, software, and solutions (e.g., SIEM, IDS/IPS, firewalls, encryption standards)
• Proven experience conducting IT security audits and assessments
• Excellent organizational skills to handle compliance documentation and regulatory forms
• Strong communication skills with the ability to work in a collaborative team environment
• Experience managing third-party vendor relationships related to security

Preferred Qualifications:

• Certifications such as CISA, CISSP, CISM, or ISO 27001 Lead Auditor
• Knowledge of other cybersecurity frameworks such as NIST, SOC 2, or GDPR
• Familiarity with incident response processes and risk management

NA