Job Detail

Job Positions

Information Security Expert

General Information

Country: Albania

Company HQ: Tirane

Job location: Tirane

Overall description of the company: A place where change means opportunity for progress and innovation. A place where people with the ambition for peak performance can go beyond what is today and create what is tomorrow.
Work and grow with “ONE”!

Purpose of Position: Contributing to the maintenance and improvement of the ISMS and BCM programs based on ISO 27001, ISO 22301 and Albanian Legislation/s. Follow and implement ISMS and BCM processes and procedures to be used in the local ISMS and BCM programs including the development of ISMS, BC, IT DR, Network DR and Contingency planning, identification of local contingency facilities and requirements. This position works in active cooperation with all team members.

Key Responsibilities:

Propose solutions to IT security vulnerabilities, and coordinate with IT/Network/ other business units for activities that needs to be done to correct /prevent IS vulnerabilities until closure.

Assess and manage mitigation finalization of any security related findings of any type of audit report: ISO 27001 Audit Report, Group Report, Internal Audit Report, Internal Control Audit, etc.

Prepare reports regarding potential IT security vulnerabilities by assessing and analysing periodically information security related system data (ex: from Log Event Management Tools, SIEM, Exchange & AD Auditing Tools, firewall, antivirus system, Defender, NESSUS, etc.

Coordinate with development and IT teams to ensure security vulnerabilities are addressed promptly.

Collaborate continuously with otheCompany Teams Audit / IT teams/etc in case of an information security related event or security breach by performing the incident response process, analysis, identification, containment, eradication, recovery, and lessons learned.

Prepare and provide reports on security incidents, security performance/scanning results.

Produce detailed reports for senior management on the state of the organization’s security posture.

Oversee the configuration, implementation, and maintenance of security infrastructure, such as firewalls, DMZs, VPNs, etc. Ensure encryption protocols, access control measures, and security updates are properly in place.

Support other IT and Network Group Managers for BCP (Business Continuity Planning and Procedures) to be defined, tested and validated.

Create, implement, and update information security policies, standards, and procedures.

Ensure compliance with security policies by employees and third parties.

Conduct regular security risk assessments to identify potential vulnerabilities, threats, and risks to the organization’s information systems.

Participate in security audits and ensure readiness for internal or external assessments.

Monitor and analyse data movement via DLP Solution within and outside the organization to ensure security compliance.

Manage and ensue that employees Information Security Awareness Trainings are delivered via Proofpoint Security Awareness Platform. Deliver on-site security awareness training sessions.

Perform in time all the mandatory information security awareness trainings assigned from the Information Security Team.

Comply with Information Security Policies, and all company procedures and regulations.

Job Requirements

Education: University Degree in Electronics/Computer Sciences/Informatics.

Experience: At least 5 years working experience in IT or GSM environment, preferably networking/systems implementation or maintenance profile. Active participation on System/Computer Networks implémentations, configurations

Required Skills: Good communication and presentation skills; English Language well spoken and written; Confidentiality, loyalty and flexibility, credentials such as ISO27001 Lead/Internal Auditor, CompTIA Security+, CC, CISSP, CISM, BCCP, BCCS are considered an advantage.

Check what the job entails, and submit your application. Please be thorough in reading all the abovementioned duties and specifications for the available positions, as well as researching things which are related but not mentioned above.

Deadline: 04/15/2025

Apply Now!