Information Security Manager (project work / part-time / full-time)
Innoware is growing and is looking for an experienced professional to fill the position of Information Security Manager.
There are various options for cooperation depending on your wishes and capabilities – project work (approximately 6 months), or permanent part-time or full-time workload.
Our Systems Engineers are already ensuring compliance of the IT infrastructure with best security practices. And the new colleague will be tasked with creatinga comprehensive information and cybersecurity policy, training the entire team on security issues, and managing ISO 27001 certification.
The vacancy is closed
Key tasks
Key tasks
1. Information security strategy: developing and implementing an information security policy, ensuring its compliance, and conducting correspondent internal audits.
2. Protection of information systems:
Monitoring and analysing threats and vulnerabilities of the company’s information systems.
Implementing measures to detect, prevent and eliminate threats.
Identifying incidents and ensure their elimination.
Managing and ensuring information security in cooperation with third parties – suppliers and partners, integration of third-party services, etc.
Organising the provision and control of access to IT resources. Administering cloud services and Microsoft server products in terms of information security.
Organising secure data storage, management and deletion processes.
3. Certification, compliance with standards:
Ensuring compliance with standards and regulatory requirements (ISO/IEC 27001, GDPR, etc.).
Managing the ISO 27001 certification project, participating in external audits, monitoring corrective actions and following up on compliance with certification requirements.
4. Conducting trainings for Innoware team on the information security basics.
At least 2 years of experience in a similar position.
Experience in passing information security audits.
Will be an advantage: experience in passing IT certification (ISO 27001, SOC, etc.) and/or maintaining compliance with such certification requirements.
Knowledge and experience with data protection tools (Firewall, DLP, Vulnerability scanner or equivalent, etc.).
Understanding of the Secure SDLC process.
Strong knowledge of Microsoft solutions and platforms (Windows Server, Active Directory DS, Exchange Server, SharePoint Server, SQL Server, Microsoft 365, Microsoft Azure).
Understanding of basic IP networking technologies: Routing, VPN, DNS.
Experience in writing documentation.
University degree.
Intermediate/B1 level of English (reading, writing), fluency in Ukrainian.
We offer
We offer
Working with professional colleagues who are interested in a successful joint result.
Work with solutions from the leading international vendor – Microsoft.
Conditions for professional development, mentoring activities that will be new for you.
A variety of tasks, including non-standard and new ones even for us.
Experience in managing an ISO 27001 international certification project.
Our values and corporate culture: both as a company and as an employer, Innoware stands for open, honest relationships, mutual trust, and compliance with agreements. We also support each other in our development and work, as well as in life situations.
Work format: most of the time – remotely, but you must be able to come to our Kyiv office if necessary (in particular, during the audit). Therefore, the position is suitable for candidates from Kyiv and nearby settlements.
We hope that we have managed to interest you! Please send us your detailed CV in Ukrainian or English to IWwork@innoware.com. We will carefully review it and invite you to the first interview if the information in your CV meets the qualification requirements.
Join us, take on new professional challenges and work together with the experienced Innoware team!