IT Information Security Officer – Job Description

Objective

The IT Information Security Officer is responsible for developing, implementing, and monitoring the organization’s information security strategy. This role ensures that systems, infrastructure, and data are effectively protected against cyber threats and compliance risks.

You will collaborate closely with a colleague and a team of 40 IT professionals, reporting directly to the IT Director.

Key Responsibilities

• Develop, implement, and maintain information security policies, standards, and procedures.
• Identify, assess, and manage security risks and vulnerabilities within the IT environment.
• Monitor compliance with security standards and regulations, including ISO 27001 and GDPR.
• Coordinate and support security audits, risk assessments, and compliance reviews.
• Provide guidance to management and IT teams on cybersecurity risks and best practices.
• Manage and respond to security incidents, including investigations when required.
• Promote security awareness and training across the organization.

Qualifications & Skills

• Bachelor’s degree in IT, Cybersecurity, or a related field.
• Proven experience in information security, risk management, and compliance.
• Strong knowledge of ISO 27001, GDPR, and relevant security frameworks.
• Experience with security technologies such as firewalls, IDS/IPS, and SIEM solutions.
• Strong analytical and problem-solving abilities.
• Excellent communication skills with the ability to explain technical concepts clearly.
• Proactive mindset with a results-driven approach.