Information Security Officer

Job description 

Dataplanet N.V. doing business as Blue NAP Americas, as the most advanced multi-tenant, carrier-neutral, cloud-neutral, Tier-IV certified data center serving the Pan-Caribbean region, offers Colocation, Private and Public Cloud Services, Professional – and Managed Services, Business Continuity and Office Space services.

The ideal candidate will have considerable hands-on experience in all aspects of Information Security and have a demonstrated ability to work independently. This candidate can communicate clearly and effectively, both verbally and in writing. Proactively improving job knowledge, and technical and functional skills through training opportunities and self-study.

 Key Accountabilities and responsibilities

• Develop, manage, and continually enhance the Information Security and Risk management programs to protect BNA systems, data, and customers.
• Develop long-term strategies to support all domains of a complete information security program
• Define, develop, and validate baseline security configurations for operating systems, applications, and networking and telecommunications equipment, including policy assessment and compliance tools, network security appliances, and host-based security systems
• Identify new and relevant cybersecurity threats and trends and raise awareness across IT and business leadership
• Identify areas that require additional investment and focus to ensure compliance with regulatory and internal security requirements
• Develop and improve the organization’s security awareness and knowledge including communications, training, testing, and active incident response exercises
• Establish and publish security policies and processes as necessary to improve adoption and adherence to security best practices
• Ensure compliance with information security frameworks requirements and coordinate related activities
• Liaise with internal and external auditors on information security audits, manage findings and remediation plans with system/application owners
• Keep up to date with the latest in IT and OT security technologies 
• Meet professional obligations through efficient work habits such as, meeting deadlines, honoring schedules, coordinating resources and meetings in an effective and timely manner, and demonstrating respect for others

 Qualifications and Requirements

•  Bachelor’s degree in Information Technology or equivalent combination of education and relevant experience
• 3+ years of relevant experience
• CISSP, CISM, CRISC, CEH and/or CISA certification is desired
• In-depth knowledge and understanding of information risk concepts and principles, as a means of relating business needs to security controls
• Knowledge of security, service, and control frameworks, such as SOC2, COBIT, ISO 27001, NIST, ITIL and GDPR
• Skilled in performing risk, business impact, control, and vulnerability assessments
• Excellent technical knowledge of mainstream operating systems and a wide range of security technologies, such as network security appliances, identity, and access management (IAM) systems, anti-malware solutions, automated policy compliance tools, and desktop security tools
• Strong analytical skills to analyze security requirements and relate them to appropriate security controls
• Strong verbal and written communication skills
• Strong organizational skills and ability to multitask in a small business environment