We have an exciting opportunity for an Information Security Officer (ISO) to join our Security team in Riga, Latvia.
Clear Junction is a global payments company, licensed and regulated by FCA in the UK, that offers regulated end-to-end payments solutions based on proprietary, in-house technology. The company's infrastructure is designed to meet the growing needs of global financial companies.
Founded in 2016, the business has seen double-digit growth year on year, with over 80 fintech professionals now based across the UK and mainland Europe.
What You Will Do
Main Responsibilities:
- Collaborate with management and the IT department to improve Information amp; Cyber Security;
- Identify vulnerabilities, document them, assess their damage and work with the IT department to resolve them;
- Be responsible for Cyber Security basic hygiene and User’s awareness (Phishing, Social Engineering, etc);
- Assist in creation and update of Security Policies amp; Procedures, plus their Enforcement;
- Educate colleagues about best practices for information security;
- Monitor security-related logs and alerts and provide analytics;
- Monitor users and their behaviour, from onboarding to termination;
- Use relevant native Security tools for Google cloud (G-suit, Google drive);
- Assist IT in Investigation, Mitigation and Response to security incidents;
- Recommend, Implement, fine-tune and monitor third-party cyber security solutions (EDR, DLP, SIEM, etc)
Additional Responsibilities:
- Initiate amp; Perform Security Audits and Risk assessments;
- Ensure implementation of recommendations (PCI DSS, audits, PenTests, Red team, drills, etc);
- Keep up to date with developments in IT security standards and threats;
- Provide periodic reports on Information amp; Cyber Security’s maturity level to the Security Director.
Requirements
Essential
- Proven experience (3+ years) in either Information Security or IT audit amp; IT GRC;
- Proven knowledge of best practices (ISO, NIST, CIS, etc);
- Some experience with the following: macOS; MDM (Mobile Devices Management); EDR (Endpoint-detection-response); Virtualized infrastructure, and Cloud Operations amp; Configurations;
- Ability to work independently and initiate security-related activities;
- Working proficiency in English
Desirable
- Relevant certifications (CISA, CISM, CISSP, etc);
- Google Certified Professional Cloud Architect;
- Financial sector / Fintech or Start-up job environment;
- Able to speak Russian
Benefits
- Competitive salary and bonus - depending on experience
- Collaborative team and culture
- Great opportunity to build your career in a cutting-edge payments fintech
- Flexible working - remote and office