We are looking for a qualified individual with expertise in managing the certification process for PCIDSS, and ISO27701, and overseeing annual audits for ISO 9001 and ISO 27001.

Вимоги:
In-depth, hands-on experience in attaining PCIDSS, ISO27701, ISO 9001, ISO 27001 certifications
Exceptional expertise in these information security and quality standards
Detail-oriented with ability to manage rigorous certification processes
Strong documentation skills
Excellent communication and presentation abilities
Proven experience in overseeing compliance audits

Обов'язки:
Oversee and manage the entire certification process for PCIDSS, ISO27701, ISO 9001, and ISO 27001 standards
Conduct gap analyses between current state and certification requirements
Drive the implementation of new processes and procedures to address gaps and comply with standards
Prepare all documentation for certification audits such as policies, reports, risk assessments etc.
Successfully manage surveillance and re-certification audits on an annual basis
Continuously monitor upcoming changes in standards and regulations
Identify improvement areas in our management systems and enhance overall compliance
Also:
to teach employees how to perform risk assessment;
to prepare training and awareness plan for information security;
to perform continuous activities related to awareness raising;
to perform induction training on security topics for new employees;
to communicate the benefits of information security;
to propose information security objectives;
to propose budget and other required resources for protecting of information;
to advise top executives on all security matters.
to perform risk assessment for activities to be outsourced;
to analyse incidents to prevent their recurrence.
to coordinate exercising and testing;
to approve appropriate methods for protection of mobile devices, computer networks and other communication channels;
to propose authentication methods, password policy, encryption methods, etc.;
to propose rules for secure teleworking;
to define required security features of Internet services;
to define principles of security for information systems;

Умови праці:
Remote work,
Part-time
Hourly payment
Freelance contract