Job Specifications
POSITION OVERVIEW
We are seeking an experienced cybersecurity professional to support our organization's information security initiatives. This role involves assessing risks, prioritizing security threats, and ensuring compliance with industry frameworks and regulatory requirements. The ideal candidate will play a key role in maintaining and enhancing our security posture through proactive risk management, policy enforcement, and collaboration with key stakeholders.
KEY RESPONSIBILITIES:
Evaluate and manage security vulnerabilities, identifying risks and tracking remediation efforts.
Develop and maintain security programs aligned with industry best practices and regulatory standards.
Review contractual agreements to verify adherence to security policies and compliance requirements.
Conduct periodic security audits and assessments to ensure ongoing regulatory compliance.
Facilitate security awareness programs to promote a culture of cybersecurity and risk management.
Maintain security documentation, including policies, procedures, and governance frameworks.
Monitor evolving security threats, regulatory updates, and emerging technologies to adapt security strategies accordingly.
Provide regular security reports and insights to leadership, outlining findings and recommendations.
Oversee and coordinate the organization's response to cybersecurity incidents, ensuring timely resolution.
Collaborate with IT and risk management teams to implement and enforce security controls.
Support advanced security monitoring, vulnerability management, and proactive threat detection.
Actively participate in security governance, compliance initiatives, and change management processes.
REQUIRED QUALIFICATIONS & SKILLS:
Proven experience in IT security operations, governance, and risk management.
Strong knowledge of security frameworks such as ISO 27001, NIST CSF, CIS, and regulatory standards like HIPAA, GDPR, and PCI-DSS.
Hands-on expertise with security technologies, including firewalls, IDS/IPS, DLP, encryption, vulnerability scanning, and endpoint protection.
Ability to communicate security risks in business terms and develop practical mitigation strategies.
Experience with incident response, root cause analysis, and continuous security improvement initiatives.
Strong problem-solving skills with a detail-oriented mindset.
Excellent collaboration and communication abilities to work effectively with diverse teams.
Relevant industry certifications (e.g., CISSP, CISM, CISA, CRISC) are preferred.
The Phoenix Group Advisors is an equal opportunity employer. We are committed to creating a diverse and inclusive workplace and prohibit discrimination and harassment of any kind based on race, color, religion, gender, sexual orientation, gender identity or expression, national origin, age, genetic information, disability, or veteran status. We strive to attract talented individuals from all backgrounds and provide equal employment opportunities to all employees and applicants for employment.
About the Company
The Phoenix Group is a staffing and solutions firm dedicated to delivering the highest quality resources in the most efficient and cost-effective way. Our approach can be adapted to any organization and molded to accommodate any business cycle. The one constant is our clients’ ability to concentrate on their core competencies and increase productivity.
Our clients range from large fortune 100 businesses, to small private firms, to non-profits. We work across a variety of market sectors and service clients internationally...
Know more