Offer summary

Qualifications:

Minimum of 3 years experience in an information security role., Knowledge of international security standards such as ISO 27001, NIST, and PCI DSS., Understanding of security policies, procedures, and compliance requirements., IT skills with familiarity in security compliance and internal audit processes..

Key responsibilities:

Manage and support security compliance programs and reporting.

Coordinate security training campaigns and internal controls activities.

Participate in internal audits, risk assessments, and vendor evaluations.

Ensure security documentation is up-to-date and assist in vulnerability mitigation.

Job description

About GTT

GTT is a leading networking and security as a service provider for multinational organizations, simply and securely connecting people and machines to data and applications – anywhere in the world. We serve thousands of organizations, bringing together the right people, partners and technology to reduce the burden on IT teams and solve the most pressing networking and security challenges. Built on our top-ranked global Tier 1 network, GTT Envision is a single global technology platform to connect, orchestrate, virtualize and automate enterprise networks, enabling customers with consumable solutions to achieve business missions and meet ongoing demand when, where and how needed. Our portfolio includes SASE, SD-WAN, security, internet, voice and other connectivity options, complemented by a suite of professional services and exceptional sales and support teams in local markets around the globe. We partner with our customers to deliver Greater Technology Together. For more information, please visit www.gtt.net

Role Summary:

In this role, the employee will support the Information Security Team in executing security controls based on industry standards (ISO 27001, ISO 22301, SOC 2, NIST). The employee will manage several compliance programs that have been fully implemented and defined.

Job Scope/Supervision:

This role reports to the Manager of the Information Security team. As part of the role, the employee will work closely with other corporate teams that are involved in security compliance; such teams will include IT, HR, Cyber Security, and other support teams.

Duties and Responsibilities:

Developing and initiating processes and running cross-functional projects
Responsible for corporate compliance reporting
Manage the organization of security training campaigns.
Perform internal controls activities, be familiar with the internal security compliance process
Make sure security compliance documents are up to date and complete (for example, Corporate Security policy set, Business Continuity Plan, Disaster Recovery Plan, incident management, and Records Management);
Participate in internal audits, provide all required information to internal auditors and enable an accurate score for IT applications, and remediate issues if required;
Be in touch with Information and Cybersecurity teams;
Participate in IT risk assessment, vendors’ vetting, and control assessments.
Manage Monthly Users Monitoring Review and Leavers Review;
Identify vulnerabilities and document mitigation plans and/or security requirements for application development teams.

Required Experience/Qualifications: