QCRM & Infosec Specialist

Highlights

Country

Remote

Employment

full-time

Salary

Salary Will be discuss later

Share this job

In this role of QCRM & lnfoSec Specialist, the ideal candidate will be responsible for ensuring the compliance of our systems and data with industry standards and client requirements. You should be passionate about keeping information secure and have a keen eye for identifying and mitigating risks.

Duties and Responsibilities:

• Develop, maintain and update cybersecurity, data protection and privacy-related policies, procedures, and documentation aligned with business, industry certifications, compliance and/or regulatory requirements.
• Participate in data security, privacy and compliance assessments, including ISO 20001, 27001, 27017, 27018 certifications, SOC 1 and SOC 2 audits.
• Respond to clients’ data protection, cybersecurity and data privacy related questionnaires.
• Support business development and product teams with data security and privacy related activities, including participating in client and business development calls and provide input to product roadmap.
• Audit all Mercans’ processes and products’ compliance with the established data security and privacy policies and procedures.
• Ensure Mercans’ compliance with the GDPR and all other applicable data privacy laws.
• Liaise and coordinate with clients’ data security and privacy specialists to ensure that all operations are compliant with the clients’ requirements, applicable laws and Mercans’ policies and procedures.
• Collaborate with IT teams to remediate compliance issues and implement best practices
• Provide guidance and support to internal and external stakeholders regarding security best practices and awareness.
• Prepare internal and external data security and privacy related collaterals, including sales documentation, internal communications, etc.
• Provide marketing and sales teams information related to Mercans’ data security and privacy posture.
• Stay up to date with the latest security trends, threats, and industry standards.
• Prepare reports and documentation for management and external stakeholders as required.
• Provide guidance and training to staff on compliance-related matters.

Minimum Requirements and Qualifications:

• At least 2 to 4 years of experience in IT compliance, risk management, or related fields.
• Outstanding verbal and written communication skills in English.
• Prior experience in the HR or Payroll outsourcing industry is preferred.
• Technical knowledge of data and cyber security standards and processes
• Familiarity with industry compliance standards such as GDPR, ISO 20001, 22001, 27001, 27017, 27018 and SOC 1 and 2.
• Experience in conducting compliance audits and assessments
• Ability to perform vulnerability assessments, penetration testing, and security audits.
• Ability to design and implement security measures to protect against data breaches and unauthorized access.
• Strong documentation, time-management and problem-solving skills.