We are looking for an Information Security Specialist to support risk and compliance management within the ITS environment. The role involves coordinating security assessments, advising stakeholders, and ensuring compliance with internal and external security requirements. The ideal candidate has strong experience in information security, risk management, and remediation processes.
Details:
Work Schedule: Full-time, remote
Duration: 8+ months
Languages: English
Key Responsibilities:
Security Concept & Risk Assessment:
• Coordinate and advise ITS stakeholders on information security concepts
• Conduct risk assessments for high-level solution designs
• Provide guidance on authorization and logging concepts
Remediation & Compliance Support:
• Proactively follow up on open security issues and remediation activities
• Ensure timely implementation of security measures in compliance with standards
Security & Compliance Assessments:
• Assist in self-assessments, guided assessments, and compliance audits
• Support information security exception management within ITS
Documentation & Best Practices:
• Ensure alignment with best security practices and regulatory requirements
Must-Have Skills:
• 5+ years of experience in information security and/or risk management
• Strong ability to work independently and manage multiple security tasks
• Knowledge of security frameworks, risk assessment methodologies
• Security certifications (e.g., CISA, CISM) are a plus
• Experience with GRC ServiceNow is a strong advantage