Information security specialist

Viseven Group is an international IT company specializing in interactive content and cloud-based solutions for global pharmaceutical companies since 2009; constant growth and self-development is in our corporate DNA. Our unique developments and approaches are actively used in more than 50 countries all over the world. Viseven's solutions are represented at major industry events in Barcelona, Philadelphia, London, etc. The rapidly expanding team includes more than 450+ highly-skilled tech- and non-technical experts: front- and back-end developers, BA specialists and managers who create, localize and customize applications at 8 offices: in Kyiv, Zhytomyr and Vinnytsia (Ukraine), Tallinn (Estonia), Saint John (Canada), and Bridgewater, NJ (USA).

Role description:

• Tracking changes in the external and internal aspects that are relevant to the information security management system.
• Conducting an internal audit of compliance ISO 27001.
• Support application security domain during audits and regulations (ISO27001, PCI, GDPR, etc).
• Research and suggest solutions and new tools to solve security problems in new topics
• Train Viseven employees regarding security topics Align teams on recent security standards and policies
• Participating in Risk Assessment and Risk Management as is part of the Information Security Management System
• Identifying new security threats by conducting security systems review / monitoring through active watch and review of reported events
• Performing testing of the ISO controls
• Escalating issues from vulnerability bulletins and discusses countermeasures necessary to protect EIS assets

Required skills and knowledge:

• 2+ years of successful working experience in information security processes
• Deep technical/functional expertise and knowledge in information security Utilizes security tools, utilities and processes Performs manual security analysis processes
• good knowledge of Linux and Windows administration
• Experience working with Azure/AWS clouds
• Proficient with settings of web servers - Nginx/Apache and cloud load balancers
• Experience with firewalls Linux/Windows settings
• Good knowledge of ISO27001, GDPR
• Internal auditor certificate ISO 27001 is a must
  
• Knowledge of OWASP SAMM (nice to have)
• Intermediate level of English

What we provide:

We understand that our specialists are essential to making our goals a reality, so we empower them to share their vision. We reward this kind of passion with a highly competitive compensation and exceptional benefits:

• Passionate experienced team and enjoyable working environment
• Professional and career growth
• Paid time off 18 business days per year
• Compensated lunch and free tea/coffee, fruits and snacks
• Healthcare Insurance
• Accounting assistance
• Regular corporate events and team-buildings
• English learning courses
• Opportunities to participate in professional forums and conferences
• Internal and external courses for those who are ready to improve professional level constantly
• Comfy office space