IT Security and Compliance Analyst
Salary undisclosed
Apply on
Original
Simplified
IT Security and Compliance Analyst requires strong background in IT compliance, regulations, and security frameworks, and will play a crucial role in ensuring that our organization adheres to industry standards and regulations while maintaining the highest level of data security. The role required to work closely with cross-functional teams to assess, develop, and implement security, compliance strategies and solutions that align with our business goals.
Responsibilities:
- Conduct thorough assessments of the organization's IT systems, processes, and policies to identify security threats, compliance gaps and potential risks.
- Interpret and stay up to date with relevant IT regulations, standards, and frameworks (such as PCI, BNM, ISO 27001, NIST, ISMS, etc.) and translate the requirements into actionable compliance strategies.
- Collaborate with cross functional departments to develop and implement compliance policies, procedures, and security controls that address identified gaps.
- Lead or assist in the execution of IT audits, ensuring all processes and controls are thoroughly evaluated.
- Work with external auditors to facilitate audits and provide necessary documentation.
- Contribute to the development of IT security and compliance training programs for employees to raise awareness and promote a culture of compliance.
- Participate in incident response and investigation efforts related to potential security breaches.
Education and Qualifications
Bachelor's degree in IT/Computer Science or equivalent.
Relevant Experience
- Minimum 3 years of experience working as an IT Security and Compliance analyst or in a similar role.
- Experience in card management system, banking systems and/or online payment systems.
- Experience with Linux/Windows servers, MS SQL, .Net, and web technologies.
- Familiarity with security tools, technologies, and best practices.
- Experience in communicating and presenting Security and Compliance requirements to the team (verbal and written).
- Experience in
- Professional certifications such as CISA, CISM, CISSP, or equivalent is highly desirable.
Skills and Knowledge
- Excellent written and verbal communication skills for effective client and team engagement.
- Proven ability to work with minimal direction on a variety of security and risk management tasks.
- Strong problem-solving skills and quick learning ability.
- Possess good analytical and critical thinking skills, including a thorough understanding of customers’ business needs and translating it into application and operational requirements.
- Willing to read manuals, user guides, compliance documents and technical reports to keep up with advances and implement modern technology that meets internal and external needs.
- Able to communicate with different audiences and at all levels of the company.
Similar Jobs