Security Risk & Compliance Specialist

(30 days ago)

Behpardakht

Tehran/ Pasdaran

Full Time

Working days and hours

شنبه تا چهارشنبه

Business trips

Facilities and Benefits

درباره شرکت سازمان از نگاه آمار مراحل استخدام تصاویر سازمان

Company Size

201 - 500 employees

Industry

Banking

Company Type

Iranian company dealing only with Iranian entities

Establishment year

1384

Ownership type

Privately held

توضیحات بیشتر

key Requirements

3 years experience in similar position

Job Description

The Security Risk & Compliance Specialist is responsible for monitoring, analyzing, and ensuring the conformance of information security controls with standards such as ISO 27001, PCI DSS, ISO 31000, BCMS, and ITIL within the organization’s GRC (Governance, Risk & Compliance) framework.
This role focuses on risk tracking, data collection, compliance reporting, and periodic dashboard development, working closely with the Security Audit & Supervision Specialist to ensure audit findings are promptly reflected in the risk register and appropriate corrective actions are implemented.

Key Responsibilities:

Monitor compliance with ISO 27001, PCI DSS, and related information security frameworks.
Conduct gap analyses and define corrective and preventive actions.
Prepare periodic compliance and risk summary reports for management review.
Align audit findings and Key Risk Indicators (KRIs) within the risk register or GRC system.
Maintain up-to-date risk profiles and control records in the GRC repository.
Coordinate with technical teams to verify and close non-compliance issues.

Education & Experience:

Bachelor’s degree in Computer Engineering, Information Technology, or Information Security.
Minimum of 3 years of experience in security audit, risk management, or compliance analysis.

Technical Competencies (Knowledge, Skills, and Abilities):

Strong understanding of ISO 27001, ISO 31000, PCI DSS, BCMS, and ITIL requirements.
Ability to perform gap analyses and control effectiveness evaluations.
Proficiency in Excel and PowerPoint, with experience in developing data-driven dashboards (Power BI preferred).
Familiarity with access control, network security, and SIEM concepts.
Experience documenting and tracking findings in GRC software or Risk Register systems.

Benefits:
Join our expert team and enjoy the following benefits:

Opportunities for personal growth
Seasonal gifts and incentives
Comprehensive health insurance with no coverage limits
Meal and transportation allowances
Snacks provided
On-site medical and psychological support
Access to company banking and financial services
Subsidies for recreational and sports activities
Use of Tara and Snapp Pay organizational credits

Job Requirements

Age

25 - 40 Years Old

Gender

Men / Women

ثبت مشکل و تخلف آگهی

ارسال رزومه برای به پرداخت ملت

سوابق ارسال رزومه برای این شرکت