Information Security Specialist

Key Responsibilities:

Security Assessments

• Conduct comprehensive security assessments of business systems.
• Identify risks, vulnerabilities, and provide actionable remediation strategies.
• Utilize industry-standard methodologies to evaluate risks and compliance.

Technical & Non-Technical Risk Advisory

• Evaluate and communicate cyber risks clearly to both technical and non-technical stakeholders.
• Tailor recommendations to specific business environments and operational contexts.

Cybersecurity Behaviour Enablement

• Promote strong cyber hygiene and positive behaviours through awareness initiatives, training, and expert guidance.
• Support campaigns and educational activities that foster a security-first culture.

Incident Management Support

• Provide specialist expertise during security incidents.
• Assist with response activities and recommend improvements post-incident.

Customer Engagement & Support

• Act as the primary contact for information security within your business area.
• Offer real-time support on matters affecting system and data security.

Reporting & Communication

• Analyze assessment findings and translate them into business impact terms.
• Prepare clear and concise reports for stakeholders at various levels.

Security Monitoring

• Stay ahead of evolving threats, vulnerabilities, and security best practices.
• Continuously monitor the effectiveness of implemented security measures.

What You Will Need to Be Successful:

Education

• Bachelor's degree or equivalent in Information or Cyber Security, Computer Science, Engineering.

Certifications (Preferred)

• CISM, CRISC, CISSP, or CompTIA Security+.

Framework Knowledge

• Familiarity with ISO 27001/2, NIST, CIS Controls, and other relevant security standards.

Desirable Experience

• Experience in cybersecurity roles across industries like Finance, HR, Oil & Gas, Retail, Supply, or Trading.
• Ability to simplify complex cybersecurity topics for various audiences.
• Strong grasp of cyber risk assessment methodologies and the ability to assess business impacts.
• Independent, detail-oriented, and capable of handling multiple priorities simultaneously.
• Proficiency in leveraging data and technology to enable informed decision-making.