Vəzifə təlimatları
- Assisting with performing ITGC audit procedures, conducting client interviews, and reviewing documents;
- Performing audits of information security for compliance with corporate requirements and standards;
- Participation in information security diagnostics, maturity assessments, benchmarking, information security strategy, and architecture development, designing and delivering on information security improvement programs. Establishing security management systems (e.g., ISO 2700x/NIST/CIS) and industry compliance programs
- Analyzing the security of business applications, and infrastructure systems (including operating system, database, web server, firewall, and router, etc.);
- Assisting with communicating the results of projects to management via oral presentations and written reports;
- Continuously research and follow up on the latest IT and information security challenges and technologies.
- Work actively in supporting and monitoring the business development area, and in following up on proposal processing with client expectations that
- Developing and maintaining positive relationships with client
- What we offer
- The diverse nature of projects will enable you to build your career path in information security.
- A competitive salary and extensive social benefits.
- Support for a professional qualification (e.g., CISA, CISM, CEH, CISSP, etc.
- Opportunity to attend global training of PwC.
- Opportunity to work with foreign PwC offices.
Namizədə tələblər
- Degree in computer science, information security, information systems, and other related fields;
- Minimum 1 year of work experience in information security operations or information security compliance
- Hands-on experience in network security (Firewall/VPN), systems (Windows, Linux, etc.) and databases (SQL, Oracle, DB2, etc.) security, mobile technologies
- Experience in security policies and processes, and data privacy
- Background in or knowledge of project management methodology, system development methodology
- Strong interest or curiosity to develop Information Security expertise;
- Written and verbal communication skills in English and Azerbaijani (Russian is an advantage) and excellent soft skills;
- Strong and highly adaptable problem-solving skills and to manage multiple tasks, projects at the same time;
- Ability to work under pressure to meet deadlines and to work with minimal guidance.
- Not required but would be a plus: Any security consulting certifications (CISSP, CISA, CISM)
- Knowledge of technology risk and information security management framework and standards (NIST, ISO2700x, etc.)
- Knowledge of at least one of the programming languages (Java, Python, or other)
