IT Security & Compliance Specialist

 
  Work with IT Service Delivery teams to ensure remediation actions, including patching and configuration changes, are implemented according to agreed    time frames  
 
  Represent the business during onsite information security audits and assessments 
 
  Conducting Vendor Management and third party security assessments 
 
  Work with local development and infrastructure teams to identify and enhance IT security control 
 
  Participate in security / controls gap analysis to define and implement necessary solutions for compliance. 
 
  Co-ordinate, support audit engagement and response to the inquiries from regulator and auditor and monitor the resolution of audit findings as well as ensure agreed action plans are completed as planned 
 
  Promote IT security awareness and share best IT security best practice as well as to demonstrate adherence to internal controls. 
 
  Reviews vulnerability reports, researches vulnerabilities to assess risk and develops/documents mitigation strategies. 
 
  Compliance objectives by ensuring compliance with Cybersecurity Policies, ISO-2700, PCI DSS and GDPR. 
 
  Performing risk assessments, compliance assessments and audits (internal and external) to compliance best practice frameworks and company policy. 
 
  Advise IT stakeholders on the effectiveness of corrective action plans in the event of non-compliance or detected vulnerabilities in their environment. 
 
  Update controls, record and risks documented as regularly. 
 
  Assists in developing and administering ongoing IT compliance monitoring and governance activities.  
 
  Drafting and Reviewing organizational policies and procedures to ensure compliance with legal and company requirements. 
 
  Provide technical advice and coordination on the implementation of security systems and on security risks associated with IT systems.