Information Security Officer (offline)
Required skills:
- Bachelor Degree with a major in Cyber Security or Computer Science or equivalent experience;
- English at a level sufficient to carry a conversation;
- 5+ years of experience in Information Security, Risk Assessment, and Audits;
- R&D experience with complex software projects;
- Experience in developing & maintaining ISMS;
- Knowledge of ISO 27001, SOC2, NIST, HIPAA, PCI DSS, GDPR;
- Ability to conduct readiness/gap assessments, provide recommendations;
- Understanding of GRC framework;
- Understanding of secure coding practices, ethical hacking, threat modeling, secure SDLC process;
- Understanding of DR / BCP;
- Experience in defining security requirements as well as evaluating and selecting appropriate information security controls;
- Understanding of IT and information security trends, challenges;
- Knowledge of security vendors, systems, and solutions;
- Hands on experience applying security solutions for network scanning, intrusion detection, WAF, etc.;
- Knowledge of in-transit/at-rest data encryption algos and techniques;
- Experience with AWS.
As a plus:
- Project Management Experience;
- Experience with Java/Spring/Hibernate stack;
- Experience with Node JS;
What we offer you:
- Competitive salary;
- 100% remote job;
- Flexible work hours;
- Personalized development plan for your professional and career growth;
- Paid online courses;
- Working directly for USA product company while developing innovative AI-driven healthcare;
- Sharing the success of the company in the form of performance bonuses and successful exit reward;
Responsibilities:
- Be available to interact with the US team from 7 am PST till 10am PST;
- Create relevant information security policies and procedures;
- Develop both high- and low-level action plans for implementation of the information security policies and procedures maintaining the proper balance between business priorities, information security risks, and cost of controls implementation for the organization;
- Coach, advise and drive adoption of developed policies and procedures and implementation of the action plans;
- Establish and maintain strong relationships with both senior and operating level business leaders to ensure alignment to customer and business needs while prioritizing key initiatives;
- Coordinate the maintenance of the Information Security Risk Management process, coordinate risk assessment cycle implementation with respective risk and control owner definition, and development of Risk Treatment plans;
- Support audit cycle implementation to be done through preparation of materials for audit conduction, coordination of audits, participation in audits. Organize and manage the communication of results to the Management Team and respective involved parties;
- Participate in the customer information security compliance process. Identify and analyze customer requirements related to information security;
- Arrange a preparation for the external information security audits. Participate in the audit passing process;
- Coordinate the process of the implementation of the corrective actions to address nonconformities found during internal and external information security audits;
- Provide supervision and guidance for the engineers;
- Promote the compliance mindset: organize the development and delivery of required communication campaigns, awareness programs and training for different focus groups and different internal and external stakeholders;
- Provide subject matter expertise in information security for internal and external requests.
Project description
Kyla is a California based med-tech startup, funded by the US chain of urgent care clinics.
What we propose on this role is minimum bureaucracy and maximum productivity in a fast-growing company.
Join us, if you’d like to work in a supportive product environment with people who are sharing the same values and working on the same goals together.
* PLEASE, APPLY WITH: *
1. Resume in PDF format;
2. The date when you can start;
3. Salary expectation per month.
- Bachelor Degree with a major in Cyber Security or Computer Science or equivalent experience;
- English at a level sufficient to carry a conversation;
- 5+ years of experience in Information Security, Risk Assessment, and Audits;
- R&D experience with complex software projects;
- Experience in developing & maintaining ISMS;
- Knowledge of ISO 27001, SOC2, NIST, HIPAA, PCI DSS, GDPR;
- Ability to conduct readiness/gap assessments, provide recommendations;
- Understanding of GRC framework;
- Understanding of secure coding practices, ethical hacking, threat modeling, secure SDLC process;
- Understanding of DR / BCP;
- Experience in defining security requirements as well as evaluating and selecting appropriate information security controls;
- Understanding of IT and information security trends, challenges;
- Knowledge of security vendors, systems, and solutions;
- Hands on experience applying security solutions for network scanning, intrusion detection, WAF, etc.;
- Knowledge of in-transit/at-rest data encryption algos and techniques;
- Experience with AWS.
As a plus:
- Project Management Experience;
- Experience with Java/Spring/Hibernate stack;
- Experience with Node JS;
What we offer you:
- Competitive salary;
- 100% remote job;
- Flexible work hours;
- Personalized development plan for your professional and career growth;
- Paid online courses;
- Working directly for USA product company while developing innovative AI-driven healthcare;
- Sharing the success of the company in the form of performance bonuses and successful exit reward;
Responsibilities:
- Be available to interact with the US team from 7 am PST till 10am PST;
- Create relevant information security policies and procedures;
- Develop both high- and low-level action plans for implementation of the information security policies and procedures maintaining the proper balance between business priorities, information security risks, and cost of controls implementation for the organization;
- Coach, advise and drive adoption of developed policies and procedures and implementation of the action plans;
- Establish and maintain strong relationships with both senior and operating level business leaders to ensure alignment to customer and business needs while prioritizing key initiatives;
- Coordinate the maintenance of the Information Security Risk Management process, coordinate risk assessment cycle implementation with respective risk and control owner definition, and development of Risk Treatment plans;
- Support audit cycle implementation to be done through preparation of materials for audit conduction, coordination of audits, participation in audits. Organize and manage the communication of results to the Management Team and respective involved parties;
- Participate in the customer information security compliance process. Identify and analyze customer requirements related to information security;
- Arrange a preparation for the external information security audits. Participate in the audit passing process;
- Coordinate the process of the implementation of the corrective actions to address nonconformities found during internal and external information security audits;
- Provide supervision and guidance for the engineers;
- Promote the compliance mindset: organize the development and delivery of required communication campaigns, awareness programs and training for different focus groups and different internal and external stakeholders;
- Provide subject matter expertise in information security for internal and external requests.
Project description
Kyla is a California based med-tech startup, funded by the US chain of urgent care clinics.
What we propose on this role is minimum bureaucracy and maximum productivity in a fast-growing company.
Join us, if you’d like to work in a supportive product environment with people who are sharing the same values and working on the same goals together.
* PLEASE, APPLY WITH: *
1. Resume in PDF format;
2. The date when you can start;
3. Salary expectation per month.
About Kyla
Kyla.com is a California based med-tech startup, funded by a chain of urgent care clinics. We make you live longer. First, machine learning is applied to your medical data to estimate your remaining lifetime. Then, our AI gives you simple, doctor-validated tasks to increase your life expectancy. Finally, our chatbot can diagnose your acute condition and prescribe treatment validated by a real doctor.Company website:
https://kyla.com
DOU company page:
https://jobs.dou.ua/companies/kyla/
The job ad is no longer active
Job unpublished on
24 October 2021
Look at the current jobs Security Remote→
Average salary range of similar jobs in
analytics →
Similar jobs
Ukraine
Security Design Consultant at Trust Sourcing
Poland
All jobs Security remote All jobs Kyla