IT Security Officer

• Risk Management: Conduct risk assessments for new projects and tools, manage risk registers, and collaborate on global threat responses.
• Compliance: Support audits, evidence collection, and control process development in coordination with global GRC teams.
• Project & Change Support: Review and approve security aspects of changes, projects, and initiatives; represent security in change advisory boards.
• Security Operations (Protect, Detect, Respond):

• Oversee patch management, backup, disaster recovery, malware protection, and network security configurations.
• Lead vulnerability management and coordinate threat hunting with third parties.
• Manage security incidents, including major incidents and forensic investigations.

• Scope: Security and compliance for GIO services.
• Stakeholders: Internal IT teams, security operations centers, auditors, and external service providers.

• Education: Bachelor’s in Computer Science/Engineering or related field; security certifications (e.g., CISSP, CISM, ISO 27001) preferred.
• Experience: 10+ years in IT security, with expertise in risk management, audits, and security operations.
• Skills: Strong technical knowledge in infrastructure, cloud, and network security; project management; regulatory compliance (e.g., ISO 27001, GDPR).
• Competencies: Strong communication, leadership, decision-making, and stakeholder management skills.
• Languages: Fluent in English; additional languages are a plus.

• Cloud Security → CCSP / GCSA
• Network Security → CND / CCNP / CCNA Security / CEH
• System/Infrastructure Security → CISSP / CISM / CISA
• Industrial Technology (OT) Security → CDSE / GICSP / ISP / ISOC

NConsulting