Cybersecurity Specialist

The Cybersecurity Expert will be responsible for implementing, maintaining, and auditing the organization’s information security framework, with a strong focus on ISO/IEC 27001 compliance. This role ensures that the company’s data and systems are secure from threats, and operates within the required legal and regulatory guidelines.

Key Responsibilities:

• Implement and maintain the ISO/IEC 27001 Information Security Management System (ISMS).
• Conduct risk assessments and develop mitigation strategies for cyber threats and vulnerabilities.
• Ensure continuous improvement of information security policies, procedures, and controls.
• Perform internal audits and prepare the organization for external ISO 27001 audits and certifications.
• Manage and resolve cybersecurity incidents, coordinating response plans and investigations.
• Provide guidance on secure development practices and secure system architecture.
• Train employees and departments on information security awareness and best practices.
• Collaborate with IT, legal, and compliance teams to ensure security is embedded across operations.
• Monitor security tools, log data, and system alerts to detect and respond to anomalies.

Requirements:

• 5+ years of experience in a cybersecurity role, with hands-on ISO 27001 implementation and auditing.
• Certified ISO/IEC 27001 Lead Implementer or Auditor (mandatory).
• Strong understanding of risk assessment, GRC frameworks, and security operations.
• Proficient in tools and technologies such as SIEM, IDS/IPS, vulnerability scanners, and endpoint protection.
• Excellent documentation and reporting skills.
• Bachelor’s degree in Cybersecurity, IT, or a related field; relevant certifications (CISSP, CISA, etc.) preferred.