Information Security Specialist

Information Security Specialist

About the Role:

The ideal candidate has hands-on expertise in network, application, mobile, and data security, as well as strong skills in cryptography, penetration testing, vulnerability assessments, DevSecOps, and cloud security (Azure or other public cloud platforms).

In this role, you will lead and support security risk assessments, implement robust security controls, and contribute to overall security architecture and governance. Certifications such as CISSP, CISA, or equivalents are highly desirable.

This is a strategic position for a professional looking to make a tangible impact in a fast-paced, security-focused environment.

Key Responsibilities:

• Conduct information and cybersecurity risk assessments and business impact analyses
• Perform cloud and vendor risk assessments
• Manage and maintain Information Security Management System (ISMS) programs in line with ISO2700x and COBIT standards
• Design and implement security controls across Microsoft 365 suite (SharePoint, Outlook, Entra ID, MDM)
• Plan and support security frameworks for Azure, applications, middleware, databases, and networks
• Provide security guidance for IT projects throughout the project lifecycle
• Define, implement, and maintain corporate security policies, procedures, and controls
• Monitor vulnerability management and security hardening programs
• Coordinate and manage penetration testing activities
• Lead information security risk reviews and track mitigation efforts
• Contribute to security policy and procedure updates
• Manage data security and governance tools (e.g., Microsoft Purview)
• Oversee security event monitoring systems (SIEM)
• Act as a Business Continuity advisor, participate in DR drills, and recommend improvements
• Support internal security assessments and compliance with regulations like GDPR and DORA
• Work with auditors during IT audits and regulatory self-assessments

Who We’re Looking For:

• Passionate and curious about cybersecurity
• Able to juggle multiple priorities and meet tight deadlines
• Proactive, solution-oriented, and collaborative
• Comfortable working in complex, fast-changing environments
• Creative and willing to challenge assumptions while building strong stakeholder relationships

Qualifications & Skills:

• Bachelor’s or Master’s degree in Computer Science, Information Technology, Cybersecurity, or a related field (required)
• Minimum 5 years of experience in information and cybersecurity roles
• Hands-on experience in network, application, mobile, and data security, cryptography, penetration testing, vulnerability assessments, DevSecOps, and cloud security
• Experience with Azure or other public cloud environments
• Security certifications such as CISSP, CISA, or equivalent (preferred)

Why This Role:

This is an exciting opportunity for an experienced cybersecurity professional to drive security initiatives, influence strategy, and strengthen information security programs in a dynamic, high-impact environment.