Cyber security Audit & Compliance Engineer

The Cyber Security Audit & Compliance Engineer is responsible for conducting and reporting of cybersecurity and information security compliance and risk activities. and validating and evaluating the effiectivness of cybersecurity mesures across the company he have also the mission of application and adaptation of the security and compliancy framworks, policy and procedures.

Main Tasks :

• Document and update cybsersecurity policies and procedures

• Perform regular scans and ensure that latest security patches are applied.

• Ensure that the proper defenses are present for each company resource.

• Perform vulnerability and penetration tests, identify and defend against threats.

• Create network policies and defend against unauthorized access, modifications, and destruction.

• Conduct risk assessment using known risk assessment methodologie ISO 27005, Octave...

• Conduct cyber security audits and define remediation plan for identified gaps.

• Conduct compliance audits against security standards ISO 27001,RNSI, SOX or NIST.

• SOX controls owner for the information security controls design and operational effectiveness

• Analyze systems, data, and operating environments to determine appropriate security controls

• Review system architecture and system design documentation to identify security relevant aspects

• Participate in business, technical, and security reviews of the solution to explain selected security and privacy controls

• Support all aspects of Information Security Operations initiatives