Our client, a prominent player in the gaming industry, is seeking a dedicated Information Security Analyst to join their dynamic team in Limassol. The company prides itself on innovation, integrity, and a collaborative working environment, offering a chance to be part of a forward-thinking organisation committed to safeguarding its digital assets and ensuring robust security measures are in place. The successful candidate will have a minimum 3 years of relevant experience in Information Security and Cyber Security. If you are passionate about information security and eager to contribute to a thriving gaming organisation, we encourage you to apply today and take the next step in your career.
-
Administers cyber security tools on premise and cloud, such as DLP, Web Security Gateway, Vulnerability Management, Server Policy Compliance Management, PIM/PAM, IAM, Endpoint Management, AV, EDR, APT, CASB, Email Security etc.
-
Assists in strategic information security planning, based on industry-standard best practices to achieve business goals by prioritizing defence initiatives and coordinating the evaluation, deployment, and management of current and future information security technologies
-
Performs Risk Assessment and Data Privacy Impact Assessment (DPIA) on new systems/services
-
Lead the security assessment on the new corporate initiatives including the architecture design, data / privacy protection, compliance framework, etc. to identify potential risks and ensure appropriate security controls are put in place
-
Liaise and facilitate with Business Units, IT Engagement, PMO and other Information Security function teams to ensure the company security best practice is applied and identify any residual risk throughout the project life cycle
-
Reviews change/service request tickets within agreed SLA and assess the relevant organizational risk
-
Participates in evaluating, planning, and implementing of new cybersecurity technologies and systems
-
Creates, identifies, and enhances processes that may leverage new or existing technologies to improve protection or reduce risk
-
Performs periodic and on-demand system audits and vulnerability assessments
-
Ensures findings from various security assessments i.e red team activities are remediated in timely manner
-
Enforces our clients’ Information Security Policy based on industry standards (e.g., ISO27001, NIST, PCI) and best practices across all their properties and locations
-
Participates in developing, implementing, and assessing data security procedures and controls to ensure compliance with applicable regulatory and legal requirements, such as SOX, and ISO27001, GDPR
-
Participates in maintaining information security and risk management policies, procedures, and technical standards to support corporate objectives
-
Remain informed on current standards, trends, and issues in the information security industry
-
Minimum 3 years of relevant experience in Information Security and Cyber Security
-
Good knowledge of security frameworks and standards such as NIST, PCI-DSS, ISO 27001/ 27017 / 27018 / 27701
-
Familiar with compliance and regulatory frameworks e.g., GDPR, will be an advantage
-
Experience with security tools such as DLP, Web Security Gateway, Vulnerability Management, Server Policy Compliance Management, PIM/PAM, IAM, Endpoint Management, AV, EDR, APT, CASB, Email Security etc.
-
Experience with multiple operating systems security: Windows Servers and Clients, Linux, and Unix
-
Solid understanding of network design, architecture, OSI model and TCP/IP
-
Exposure to Cloud computing
-
Knowledge of Web and application-based security (i.e. OWASP Top 10)
-
Knowledge of encryption, such as PKI, SSL/TLS, Data at Rest
-
Bachelor’s degree in Management Information System, Computer Science, or related disciplines
-
An information security or other similar technical certification such as Certified Information Systems Security Professional (CISSP), Certified in Risk and Information Systems Control (CRISC), Certified Information Systems Auditor (CISA), or Certified Information Security Manager (CISM) is highly desirable
-
Certification in Privacy (e.g., CIPP/E, CIPM, CIPT, CDPO etc) will be considered as an advantage
-
Security tools technical certificates from vendors will be considered as an advantage
-
Good communication skill on report writing and presentation
-
Able to work independently and cope with result-oriented demand
-
Effective organizational and time management skills required
-
Well organized and detail-oriented on delivering the assigned task
-
Commit and strong sense of responsibility to the role and the team
-
Ability to identify, analyse and address problems to resolve issues whenever possible in a way that minimizes negative impact and risk to the organization
-
Strong analytical skills/problem solving/conceptual thinking
Due to the high volume of applications received at GRS Recruitment, only shortlisted candidates will be responded to.