Information Security Consultant, TSCM-40890

ELEKS is expanding and looking for an Information Security Consultant who is experienced with Information Security Management Systems (ISMS) in Ukraine.Our department is a team of highly motivated experts with a startup-style culture, striving to achieve excellence in what we do. You will be working in a dynamic, supportive and friendly environment where your capabilities and input really matter.We are looking for a self-motivated expert in the Information Security domain with good communication skills. Main assignment will be to assist one of our clients with ISMS activities, such as update of the policies, performing risk assessments, managing ISO27001/SOC2 certification audits, implementation of new information security solutions. REQUIREMENTS At least 1 yearof proven experience as an Information Security Consultant or similar roleIn-depth knowledge of security frameworks, standards, and best practices (e.g., ISO 27001, SOC2, NIST, GDPR)Proficiency in security tools and technologies, such as firewalls, XDR, IDS/IPS, SIEM, etc.Experience in writing IS policies and technical documentationKnowledge of Disaster Recovery / Business Continuity PlanningBachelor’s/master’s degree in information security or similarEnglish – upper-intermediate (spoken and written)Relevant certifications such as CISSP, CISM, CISA, or equivalent are highly desirable PERSONAL CHARACTERISTICS Strong communication and interpersonal skillsExcellent analytical and conceptual skillsCritical thinking and problem-solving skills RESPONSIBILITIES Develop, implement and periodically review IS policies, procedures, and protocolsRespond to client ISMS-related requests for informationPerform comprehensive security assessments to identify potential risks and vulnerabilities. Specifically, conduct periodical risk assessments of 3rd parties and software/hardware utilized by the organizationConfigure and maintain security solutions, including firewalls, data leakage prevention (DLP), extended detection and response (XDR),intrusion detection/prevention systems (IDS/IPS), etc.Perform market research to assist with the selection of IS solutionsLead project for implementation of ISMS improvements, including implementation of new IS solutionsAssist with analysis and response to security incidents and breachesCollaborate with IT and other departments to ensure security measures are integrated into all aspects of the organization's operationsProvide expert advice and guidance on information security best practices and emerging threatsParticipate in the development of security awareness trainings and phishing exercises for employeesStay up to date with the latest security trends, technologies, and regulatory requirementsPlanning of internal and external audit activities, including certification audits (ISO27001/SOC2)Participate in audits by coordinating the collection of evidence and responses to audit requestsAssist with definition, documentation, tracking and implementation of remediation activities for IS risks, issues and audit findings WHAT WILL YOU GET WITH ELEKS Challenging tasksCompetence developmentTeam of professionalsDynamic environment with a low level of bureaucracy Apply tot his job