Information Security Consultant.

Neurosoft is a leading ICT Integrator providing innovative solutions and services with the aim of increasing efficiency and security. Operating in Greece, Cyprus and SEE, they are referenced in sectors like financial services, service providers, transportation, utilities, industry, maritime and government. The company has been listed in the Italian Stock Exchange since 2009 while currently employing 200+ highly skilled professionals with depth expertise in their fields.

Our company seeks to employ an Information Security Consultant to join our Compliance and Risk Services Team – Cyber Security Operations Department. Neurosoft’s Compliance and Risk Services are designed to assist organizations to improve their security posture and ensure compliance with legal, regulatory and contractual requirements (e.g. GDPR) by establishing an effective security governance system, identifying and successfully managing information security risks, adopting international security standards (e.g. ISO 27001, etc.) and methodologies and raising employee’s security awareness.

Position Responsibilities

His/Her job will be to provide services to Clients, either on site or on-demand, project based (e.g. consulting) or as part of a managed service (e.g. CISO as a Service & DPO as a Service) for:

• Implementing and operating Cyber Security and Privacy strategies for our Clients based on international standards and regulatory frameworks (i.e. Information Security and Privacy Policies, Procedures, Guidelines and Technical Standards)
• Assessing information security risks and compliance gaps (Gap Analysis, IT Risk Assessment,Business Impact Assessment, Data Privacy Impact Assessment, etc.)
• Preparing and implementing information security awareness programs

He/She will also be responsible for:

• handling consultation needs on a daily basis for security and privacy related issues
• preparing reports and deliverables for the Clients

Required Skills and Qualifications

• Bachelor’s Degree in Computer Science or similar
• Master’s degree or training in the field of Information Security
• 1-2 years of working experience on:
o The implementation of Information Security and Data Privacy Policies and Procedures using relevant standards, methodologies and best practices (ISO 27001)
o Conducting Gap Analysis (ISO 27001, GDPR), IT Risk Assessment, Business Impact Assessment and Data Privacy Impact Assessment using relevant standards,
methodologies and best practices
o Conducting information security awareness courses (material development and/or teaching)
• Understanding of security frameworks and best practices (e.g. SANS Critical Security Controls, NIST SP)

Required Non-Technical Skills

• Very good written and verbal skills (Greek & English)
• Good interpersonal and organizational skills
• Good communication and presentation skills
• Work ethically, with integrity, maintain confidentiality of information and use information appropriately
• Support organizational goals and values

Preferred Skills and Qualifications

• ISO 27001 Lead Auditor Certification
• Knowledge of ITIL best practices and ISO standards, e.g. ISO 9000, 20000, 22301, etc.
• Experience in Project management

We Offer

• Competitive compensation & benefits package
• Leading-edge technology
• Continuous training
• Stable and enjoyable working environment