Senior Information Security Specialist

Senior Information Security Specialist

This is a challenging opportunity to take on a leadership role in shaping the security strategy of our organization.

The ideal candidate will have a strong background in information security, compliance, and risk management. They will be responsible for implementing and managing security programs aligned with global standards, ensuring ongoing compliance with relevant frameworks and regulations, and identifying risks and recommending practical solutions to mitigate threats.

We are seeking a highly skilled and experienced professional to join our team as a Senior Information Security Specialist. The successful candidate will have a minimum of 7 years' experience in information security, compliance, or risk management, and a strong understanding of information security principles, technologies, and best practices.

#Responsibilities:

• Security Program Implementation: Developing and executing security controls, procedures, and protocols across the organization.
• Compliance Oversight: Ensuring ongoing compliance with relevant frameworks and regulations, including ISO 27001, HIPAA, GDPR, and others as applicable.
• Internal Auditing & Follow-Up: Conducting internal reviews of security practices, identifying gaps or vulnerabilities, and ensuring timely remediation.
• Policy & Procedure Management: Reviewing, updating, and enforcing security policies, standards, and procedures to maintain a robust security posture.
• Client Engagement: Meeting with prospective and current clients to explain our security protocols, address concerns, and support compliance-related inquiries.
• Risk Identification & Mitigation: Proactively identifying risks and recommending practical solutions to mitigate threats.
• Documentation & Reporting: Maintaining clear and comprehensive records of security activities, compliance status, and improvement initiatives.
• Continuous Improvement: Driving ongoing enhancements to the organization's security framework and practices.

#Qualifications:

• Experience: Minimum of 7 years' experience in information security, compliance, or risk management.
• Expertise: Strong background in implementing and managing security programs aligned with global standards.
• Client-Facing Skills: Experience communicating technical security concepts to clients and stakeholders in a clear and professional manner.

#Technical Skills:

• Information Security Principles: Deep understanding of information security principles, technologies, and best practices (e.g., access control, network security, data encryption, incident response).
• Enterprise IT Environments: Familiarity with enterprise IT environments, cloud services, and BPO operational models.
• Regulatory Compliance: Knowledge of U.S. security standards and regulatory requirements.

#Preferred Certifications:

CISA, CISSP, CRISC, ISO 27001 Lead Implementer or Auditor, or similar.

#Soft Skills:

• Leadership & Initiative: Ability to lead cross-functional efforts and drive security improvements.
• Analytical Thinking: Strong problem-solving skills and attention to detail.
• Communication: Excellent verbal and written communication skills.
• Interpersonal Skills: Ability to build trust and collaborate effectively across teams.
• Project Management: Skilled in managing multiple priorities and delivering results on time.

Why Join Us?

This is an exciting opportunity to make a meaningful impact on the security of our organization and contribute to its long-term success.

What We Offer:

A dynamic and supportive work environment, opportunities for professional growth and development, and a competitive compensation package.