Information Security Consultant

ELEKS Information Security Office is expanding and looking for an Information Security Consultant experienced with Information Security and Quality Management Systems (ISMS/QMS) in Ukraine.

Our department is a team of highly motivated experts with a startup-style culture, striving to achieve excellence in what we do. The highest quality of our work enabled us to establish compliance consultancy services for the external clients in addition to support of the internal ELEKS quality/security activities. You will be working in a dynamic, supportive and friendly environment where your capabilities and input really matter.

The new team member will be responsible for documentation maintenance, content creation and implementation of ELEKS Compliance Automation Platform (eCAP). eCAP is a Governance Risk and Compliance (GRC) tool covering Information Security, Quality, Privacy and Business Continuity standards/frameworks.

REQUIREMENTS

• At least 1 years of relevant experience  with ISMS/QMS
• Understanding of information security fundamentals, technologies and terminology
• Understanding of security frameworks/standards (e.g. ISO 27001, SOC2, NIST, GDPR, etc.)
• Knowledge of Information Security Management System
• Knowledge of principles of writing technical documentation
• Understanding of information security controls in computer systems, media, and the Internet
• Understanding of Disaster Recovery/Business Continuity Planning
• Demonstrated ability to identify security requirements and validate implementation of applicable controls
• Strong analytical and conceptual skills
• Critical thinking and problem-solving skills
• Bachelor’s/master’s degree in information security or similar
• English – upper-intermediate (spoken and written)

PERSONAL CHARACTERISTICS

• Self-motivated personality
• Eager to learn and deliver results
• Attentive to details and striving for continuous improvement
• Professional and positive approach

RESPONSIBILITIES

• Actively participate in definition of the new functional requirements for the eCAP GRC tool
• Support with creation of project documentation covering requirements, functionality and user feedback
• Assist in creation of Information Security, Quality, Privacy and Business Continuity content for eCAP, such as policies, controls, metrics
• Identify, register, and track GRC project related improvements, changes, and optimization actions
• Assist with implementation activities for eCAP roll-out at ELEKS and on commercial projects
• Provide ISMS/QMS consultancy for clients, analyze client documentation and propose/introduce improvements, where appropriate
• Research new country-specific and regional standards/frameworks/regulations as per client needs
• Conduct workshops and trainings for clients covering eCAP functionality, ISMS/QMS best practices
• Manage communication and approval of project artifacts with the client
• Design and, in some cases, execute ISMS/QMS controls as per client request
• Conduct risk assessments, maintain data privacy documentation and perform other ISMS/QMS activities
• Participate in Business Continuity/Disaster Recovery planning and exercises
• Occasionally participate in pre-sale activities as subject-matter expert
• Participate in internal and external ISMS/QMS audits

WHAT YOU WILL GET WITH ELEKS

• Challenging tasks
• Competence development
• Team of professionals
• Dynamic environment with low level of bureaucracy

ABOUT ELEKS

ELEKS is a custom software development company. We deliver value to our clients, thanks to our expertise and experience gained from working as a software innovation partner since 1991.

Our 2000+ professionals located in the Delivery Centers across Eastern Europe and sales offices in Europe and North America, provide our clients with a full range of software engineering services. These include product development, QA, R&D, design, technology consulting and dedicated teams.