Information Security Risk Officer

TL;DR

Information Security Risk Officer: Strengthening business operations by enforcing the Information Security Framework, conducting internal risk assessments, and preparing insightful reports with an accent on IT infrastructure, applications, and third-party security. Focus on identifying and mitigating operational, tactical, and strategic risks, and ensuring compliance with regulatory requirements and best practices.

Location: Hybrid work model, based in Limassol or Nicosia, Cyprus.

Company

hirify.global is a dynamic company looking for an Information Security Risk Officer to join its GRC team.

What you will do

• Plan and execute technical and targeted risk assessments across IT infrastructure, applications, and third parties.
• Assess internal controls and policies to identify deficiencies and develop remediation strategies.
• Perform risk analysis and evaluation on current and potential risks at all operational levels.
• Maintain the risk register and the Information Security Risk Management Program.
• Identify information security risks and provide appropriate, practical, and cost-effective recommendations.
• Manage and monitor remediation progress for identified risk assessment findings.
• Prepare comprehensive reports on actions taken and the company's security posture.

Requirements

• BSc/MSc in Information Security or a relevant degree.
• At least 3 years of work experience in information security risk management and assessment.
• Technical knowledge of operations, physical, network, host, application security, and security architecture.
• Good understanding of security regulations and frameworks such as ISO 27005, ISO 27001, NIST CSF and 800-53, DORA, GDPR.
• Excellent written and verbal communication skills in English.
• Self-motivated, proactive, and efficient with strong interpersonal and project management skills.

Nice to have

• Risk-related certifications, such as CRISC, CGRC, and CISSP.

Culture & Benefits

• Attractive remuneration package.
• Private health insurance and corporate pension fund.
• Intellectually stimulating work environment with continuous personal development.
• International training opportunities.

Hiring process

• Intro Chat with Talent Acquisition.
• First Interview with Your Future Team.
• Final Interview.