Information Security Risk Officer

Coordinate Security Steering Committee activitiesDevelop and maintain Information Security Management System for Certification Authority including development of policies, and processes related to info sec based on standards.Develop a risk management frameworkConduct periodic reviews/risk assessments to ensure risks are addresses to be in compliance with the internal/external auditors and regulatory requirements.Is responsible to maintain the inventory of all PKI assets along with IT Ops TeamMaintain ISMS certification against int standards such as ISO 27001 or NIST CSFDevelop and maintain a data classification programMaintain Certification Authority risk registerDevelop vulnerability assessment plan, coordinate vulnerability assessment, and penetration testing tasks, develop and present vulnerability assessment reports to Management.Manage security incident response within the Certification Authority.Develop and conduct security awareness programs and sessions.Develop and maintain Business Continuity mgmt programPrepare monthly reports on Certification Authority security status.#J-18808-Ljbffr