IT Security Architect
Athens, Attica, Greece
Piraeus Bank
Η επίσημη ιστοσελίδα της Τράπεζας Πειραιώς. Βρείτε πληροφορίες για λογαριασμούς, καταθέσεις, καθώς και ενημερώσεις για όλα τα τραπεζικά προϊόντα.About the job:
We are seeking a skilled Information Security Analyst (GRC), -Governance Risk & Compliance to join our Group IT Security & Control team. As an Information Security Analyst, you will participate in the necessary procedures for ensuring compliance with industry standards and regulations. This role involves running the recertification program for ISO 27001 and PCI DSS international standard, conducting risk assessments, update security regulation and procedures, identify and document cybersecurity risks and maintain adherence to regulatory and compliance requirements.
Responsibilities
· Run the recertification programs for ISO 27001 and PCI DSS international standards.
· Develop, review, and update Information Security regulation and procedures to comply with international standards and regulatory requirements.
· Monitor the security level of external 3rd partners.
· Develop, update, monitor and report Key Performance & Key Risk Indicators for cyber security.
· Conduct data classification across the organization.
· Conduct ICT assets classification across the organization.
· Conduct regular risk and control self assessment to evaluate the effectiveness of current security controls.
· Identify, assess, and prioritize cybersecurity risks.
· Participate in the development of a digital resilience strategy (Cyber Security Resilience).
· Participate in the develop and implementation of the cyber security incident response plans.
· Keep up to date with the latest cyber threats, vulnerabilities, and best practices.
· Participate in the documentation and reporting of cyber security incidents.
Requirements
Qualifications
· Degree in Computer Science, ICT risk management, cyber security or related field (BSc, MSc)
· 5+ years of experience in a relevant position within cybersecurity
· Strong understanding of ICT risk management principles
· Very good knowledge of regulatory requirements related to digital resilience and compliance frameworks (DORA, GDPR, etc.)
· In depth knowledge of International Security Standards (ISO 27001 and PCD DSS)
· Customer-business service orientation and quality focus deliver
· Critical thinking, providing options relating to resolving issues, mitigating risks and resolving escalated items
· Proactive analytical expertise and problem solving approach
· Team spirit and ability to learn, adapt, communicate and organize effectively. Ability to work collaboratively with other departments.
· Very good writing skills of English language
· Security Certifications, will be considered as an asset (CISA, CCNA, etc.)
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: CISA Compliance Computer Science GDPR Governance Incident response ISO 27001 PCI DSS Risk assessment Risk management Strategy Vulnerabilities
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.