Educational Background:
• Bachelor’s degree in computer science, Information Technology, Engineering, or a related field.
• Relevant certifications (e.g., CISA, CISM, CRISC, CISSP, Security +)
Technical Skills:
• Knowledge of security standards and compliance frameworks (e.g., ISO 27001, NIST, GDPR).
• General understanding/knowledge of the following Information Security concepts/areas (not exhaustive):
• Network Security
• Encryption/Cryptography
• Cloud Security
• Risk Management
• Security Auditing
• Identity and Access Management
Analytical Skills:
• Ability to assess complex systems, identify potential risks, and make informed decisions.
• Ability to assess information objectively and provide effective challenge, as needed.
• Ability to create and document security assurance controls and processes.
• Ability to identify opportunities for security assurance process improvements or enhancements.
Communication Skills:
• Excellent written and verbal communication skills, with the ability to convey complex concepts to both technical and non-technical audiences.
• Experience in preparing reports (SSRS, PowerBI, Tableau), presenting findings, and facilitating discussions with stakeholders.
Project Management:
• Familiarity with project management methodologies (Agile, Waterfall, etc.) and tools (JIRA, Confluence, etc.).
• Experience in managing and coordinating governance activities across different teams and projects.
Collaboration:
• Strong interpersonal skills, with the ability to work effectively in cross-functional teams.
• Experience in stakeholder management and collaboration with business units, IT teams, and external partners.
Adaptability:
• Ability to adapt to evolving technologies and changing business needs.
• Open to continuous learning and professional development in security assurance and governance practices.
Organizational Skills:
• Strong organizational skills with the ability to manage multiple priorities and meet deadlines.
• Detail-oriented with a focus on documentation and process improvement.
