Senior GRC Security Expert
Playtech
Sofia, Bulgaria
Job Description
Your influential mission. You will...
- Maintain organizational information security processes, to ensure business, regulatory, legislative and contractual requirements and obligations are met;
- Lead internal and cross-functional GRC security related projects and initiatives in collaboration with representatives from various teams, departments and business units;
- Manage the internal and external ISMS audit processes, monitor effectiveness of controls and corrective actions in cooperation with the stakeholders across the organization;
- Manage gap analysis, compliance readiness, and compliance monitoring activities for ISO/IEC 27001, PCI DSS and other regulatory security audits;
- Coordinate external security audits, assessments and testing as well as remediation plans development and implementation;
- Identify, assess and monitor information security risks and recommend mitigation measures;
- Manage security requirements with third parties, including due diligence of products and services providers and information security requirements clauses in service provision agreements and contracts;
- Analyze, map and communicate information security requirements, that derive from legislative and regulatory obligations in various jurisdictions.
Qualifications
Components for success. You...
- Possess proven experience (5+ years) across security governance, risk and compliance domain;
- Have strong communication skills and ability to interact professionally with a diverse group including executive management, managers and subject matter experts;
- Have strong management skills, leading people, delegating tasks, setting goals and ensuring objectives are met in continuous and deadline-oriented activities;
- Are experienced in leading ISO 27001:2013 and PCI DSS certification and surveillance audits as well as leading and supporting information security risk assessments and management process;
- Have Bachelor’s Degree in Information Security, Information Assurance, Computer Science, Cybersecurity, Risk Management or equivalent work experience;
- Have professional certification (CISSP/CISM and ISO 27001 Lead Implementer/Auditor or similar);
- Are highly proficient in written and spoken English.
You'll get extra points for...
- Prior experience working within a SaaS/Online Gambling organization;
- Technical experience in IT infrastructure, networks, databases or software development.
Apply Now
Don't forget to mention EuroTechJobs when applying.