Город: Атырау/ удаленная работа
Должность: Information risk manager/IRM
Компания: Крупная нефтегазовая компания NCOC https://www.ncoc.kz/ru/
ЗП: от 800 000 KZT
Identify, evaluate, and prioritize IT and IM risks to minimize, monitor, and control the probability or impact of unfortunate events or to maximize the realization of opportunities. Provide information security and risk management consultation and guidance with a focus on process, policies, and general security concepts / controls. The service also includes the advice on implementing IT and IM security controls and providing assurance on the execution of IT and IM security controls.
Services delivered per an industry framework like ISO or NIST.
Education:
Bachelor’s Degree or higher in Engineering, Information technology or related field.
Knowledge:
Good Knowledge of risk management and /or assurance methodologies, tools and techniques with practical experience of application of at least one methodology
Basic Knowledge of international standards, best practices and frameworks (ISO 31000, COBIT, ITIL, M_o_R, etc.)
Good knowledge of the quality skill
Good knowledge on standard IT desktop applications like: MS Word, MS Excel, MS Visio,
MS PowerPoint
Good interpersonal skills and takes a methodical and systematic approach to work
Intermediate level of English: writing and speaking
Experience:
5+ years of experience in IT area with at least 2 years of risk management and/or assurance related activities in complex environments
Certification:
Preferred to have: CISA/CISSP/CRISC/CISM/CRISC
Контакты: [email protected]
Должность: Information risk manager/IRM
Компания: Крупная нефтегазовая компания NCOC https://www.ncoc.kz/ru/
ЗП: от 800 000 KZT
Identify, evaluate, and prioritize IT and IM risks to minimize, monitor, and control the probability or impact of unfortunate events or to maximize the realization of opportunities. Provide information security and risk management consultation and guidance with a focus on process, policies, and general security concepts / controls. The service also includes the advice on implementing IT and IM security controls and providing assurance on the execution of IT and IM security controls.
Services delivered per an industry framework like ISO or NIST.
Education:
Bachelor’s Degree or higher in Engineering, Information technology or related field.
Knowledge:
Good Knowledge of risk management and /or assurance methodologies, tools and techniques with practical experience of application of at least one methodology
Basic Knowledge of international standards, best practices and frameworks (ISO 31000, COBIT, ITIL, M_o_R, etc.)
Good knowledge of the quality skill
Good knowledge on standard IT desktop applications like: MS Word, MS Excel, MS Visio,
MS PowerPoint
Good interpersonal skills and takes a methodical and systematic approach to work
Intermediate level of English: writing and speaking
Experience:
5+ years of experience in IT area with at least 2 years of risk management and/or assurance related activities in complex environments
Certification:
Preferred to have: CISA/CISSP/CRISC/CISM/CRISC
Контакты: [email protected]