Senior Information Security Consultant.

Reference code: CRS_10.2022

Neurosoft is a leading ICT Integrator providing innovative solutions and services with the aim of increasing efficiency and security. Operating in Greece, Cyprus and SEE, they are referenced in sectors like financial services, service providers, transportation, utilities, industry, maritime and government. The company has been listed in the Italian Stock Exchange since 2009 while currently employing 200+ highly skilled professionals with depth expertise in their fields.

Our company seeks to employ a Senior Information Security Consultant to join our Compliance and Risk Services Team – Cyber Security Operations Department.

Position Responsibilities:

Provide services to Clients, either on site or on-demand, project based (e.g. consulting) or as part of a managed service (e.g. CISO as a Service) for:

  • Implementing and operating Cyber Security and Privacy strategies for our clients based on international standards and regulatory frameworks (i.e. Information Security and Privacy Policies, Procedures, Guidelines and Technical Standards)
  • Assessing information security risks and compliance gaps and recommending actions to clients (conducting Gap Analysis, IT Risk Assessment, Business Impact Assessment, etc., based on well-known methodologies)
  • Coordinating actions on Information security /data breach incidents
  • Designing and implementing Clients’ information security awareness program
  • Handling security consultation needs on a daily basis for security and privacy related issues
  • Ensuring that services are provisioned within the agreed terms and Service Level Agreements
  • Developing action plans, schedules, status reports and other top management communications intended to improve the status of information security (including KPIs, etc.)
  • Conducting information security awareness courses

Required Skills and Qualifications:

  • Bachelor’s Degree in Computer Science or similar
  • Master’s degree or training in the field of Information Security
  • More than 5 years of working experience on:
    • the implementation of Information Security Management Systems using relevant standards, methodologies and best practices
    • conducting IT Risk Assessments and Business Impact Assessments using relevant standards, methodologies and best practices
    • conducting security and compliance audits
    • operating Information Security Management Systems / InfoSec Governance
    • handling information security incidents
    • preparing security awareness training material in various forms
    • conducting information security training activities
  • In-depth knowledge of:
    • information security frameworks, industry best practices, legal and regulatory frameworks (e.g. ISO 27001, SANS Critical Security Controls, NIST, GDPR, etc.) for various sectors (e.g. IT, Banking, Maritime, Gaming, etc.)
    • IT and network security best practices and solutions
    • Technical vulnerabilities of information systems (hardware, system, application level)

 Required Non-Technical Skills:

  • Very good written and verbal skills (Greek & English)
  • Strong interpersonal and organizational skills with the ability to prioritize clients’ requirements
  • Excellent consulting skills combined with good communication and presentation skills
  • Analytic thinking
  • Work ethically, with integrity, maintain confidentiality of information and use information appropriately
  • Team player
  • Leadership skills

We Offer

  • Competitive compensation & benefits package
  • Leading-edge technology
  • Continuous training
  • Stable and enjoyable working environment