Përshkrimi

Infosoft Systems sh.p.k is looking for  IT Security Officer​

The Information Technology Security Officer is the employee responsible for providing strategic recommendations aimed at improving the security of projects and SLA maintenance contracts, as well as the internal infrastructure within the company. Their main duties will involve offering the necessary consultancy to build a reliable, efficient, and secure system, as well as ensuring that the implementation of these practices is done properly, according to international standards. They carry out various audits, perform the required investigations, and report periodically within the framework of strict compliance with security requirements.

Detyrat

• Knows and applies the best practices of IT Standards and risk and control frameworks like (CoBIT, ISO, NIST, ITIL, PCI, etc.).
• Rigorously identifies obligations to be fulfilled in compliance with local Legislation within the framework of cybersecurity.
• Works closely with the Projects function, SLA, and Technological Management, to interpret security requirements in every contract (project and SLA), and recommends the most effective implementation solutions to develop secure, efficient, and reliable systems.
• Proposes new work procedures and instructions (PO and IP), or updates existing ones, with the aim of properly managing and functioning the processes in projects and SLA, by closely cooperating with the involved departments, within the framework of security.
• Develops, implements, and maintains security processes, ensuring they are effectively integrated into business processes and systems and in compliance with the best practices of regulatory security standards.
• Inspects and verifies the security measures implemented in projects and SLA, as well as the company's internal infrastructure, aiming to identify weak points that could make information systems vulnerable to cyber attacks and security incidents.
• Identifies potential security incidents, conducts risk assessments, and recommends strategies for their mitigation.
• Follows all security controls according to a predetermined schedule, in collaboration with the respective function's manager, and reports to the direct superior and Internal Control.
• Works closely with the Internal Control manager to compile the draft plan of security controls for every company structure and follows the implementation of the plan after its approval.
• Prepares detailed control draft reports with findings from audits, improvement recommendations, and follows up on their final resolution under the guidance of the department head and Internal Control.

Kualifikimet

• University degree in computer science.
• Over 3 years of work experience in the field of quality security, focusing on information systems.
• Certifications in the field of information security such as CISSP, CISM, or similar are an advantage.
• Knowledge of control frameworks like (ISO, ITIL, etc.).
• Knowledge of information security regulatory requirements and standards (e.g., GDPR, ISO 27001, NIST, etc.).
• Detail-oriented.
• Strong analytical skills.
• Highly collaborative.
• Excellent organizational skills.
• Excellent communication skills and clarity in communication.
• Ability to adapt work according to priorities.
• Flexible to organizational changes.

Shënime

Benefits:

• Performance and salary reviews;
• Carrier development and professional challenges;
• Excellent work environment;
• Private health insurance.

Qualified candidates should submit the letter of interest, the updated CV and the copies of supporting documents including letters of reference, to the following e_mail address: [email protected]

The personal information that you will submit through your application, will be protected and used only for recruiting purposes, according to the legislation for the protection of personal information, specifically according to the Constitution of the Republic of Albania and the Law (No. 9887, dated 10.03.2008) “For the Protection of Personal Information”.