Information Security Manager SHAYA

İstanbul(Asya)(Ümraniye)

Nasıl hesaplanır?
Bu iş sana uygun olmayabilir

Seçili özgeçmişindeki bilgilerle bu ilanın kriterlerleri sadece %30 uyumlu.

Uygunluğunu nasıl hesapladık?
Son iş deneyimin, geçmiş deneyimlerin ve toplam deneyimin uygunluk puanını etkileyen kriterler arasındadır.
Bu iş sana uygun olmayabilir

Seçili özgeçmişindeki bilgilerle bu ilanın kriterlerleri sadece %30 uyumlu.

Uygunluğunu nasıl hesapladık?
Mesleki Yeterlilikler
Şirketlerin ilanda belirlediği kriterlerle özgeçmişindeki bilgilerin ne kadar uyumlu olduğu içerik karşılaştırılmasıyla bulunur.
Bu iş sana uygun olmayabilir

Seçili özgeçmişindeki bilgilerle bu ilanın kriterlerleri sadece %30 uyumlu.

Uygunluğunu nasıl hesapladık?
Diğer Bilgiler

QUALIFICATIONS AND JOB DESCRIPTION

Shaya was founded in 2002 by the Kuwait-based Alshaya Group as an investment in the Turkish market. Today, the group represents a portfolio of world's best known international brands in Turkey, managing their retail franchise operations in segments including Fashion, Food, Health & Beauty.  Shaya's franchise portfolio includes Bath and Body Works, Le Pain Quotidien, Pinkberry, Shake Shack, Starbucks, The Body Shop, Victoria's Secret and Victoria's Secret Beauty & Accessories in Turkey. Shaya, which operates with a corporate culture that rewards "Think Big," "Act Small," and "Be You", is currently looking forInformation Security Manager to join its IT Department.

  • Establishing short and long-term strategies, objectives and policies in compliance with corporate strategies.
  • Proactively adding, updating necessary controls and ensuring that they are taken for the information security risks related to existing and newly installed systems of business and related processes.
  • Updating management about the effects of the identified risks and informing them about the magnitude of the risk in terms of the estimated cost.
  • To ensure that the information inventory of the company is determined, updated and classified as required.
  • To ensure that information security control has been performed of existing and new processes of the company and to make sure that they are compliant with required information security policies. Communicating with other departments to take necessary technical measurements for the continuity of the organization's general information security design and decisions.
  • Helping all units within the organization to provide information security.
  • Collaborating with related departments on physical security issues to ensure information security.
  • To control and identify vulnerabilities of IT systems and to ensure that they are patched on time.
  • To determine the necessary trainings to improve the information security within the organization.
  • To establish necessary systems to determine information security incidents, to analyze them and to prevent them.
  • To list all laws and regulations related to the processes of the company, to determine the requirements related to these and to implement the necessary activities to ensure compliance with the laws and regulations.
  • No military service obligation       
                                                                                               

Qualifications

  • Bachelor’s degree in computer science/engineering, information systems, or related fields,
  • Minimum 7 years experience totally and 5 years of experience in Information Security positions, 
  • Experience in cyber-attack intervention, 
  • Experience in data security management,
  • Experience in security tools and products, (Incident Response, Offensive Security, database security, data security, access management)
  • Technical knowledge and experience for security, network, server & storage environment, 
  • Experience on network performance and security monitoring tools, 
  • Knowledge and experience in Security Devices such as Firewall, VPN, IPS, WAF, Proxy, SIEM, NAC) 
  • Knowledge for SOC & NOC operations, 
  • Aware of GDPR, 
  • Build & execute IS security processes, RACIs, KPIs, procedures, guidelines and ensure relative awareness of all involved stakeholders, 
  • Preferably experience implementing controls for information security compliance programs including PCI, ISO 27001 and SOC 2, 
  • Preferably holding related certifications is a plus. (CISSP, CEH, CISA, ISO 27001 LA etc.)

PREFERRED CANDIDATE

POSITION INFORMATION

Firma Sektörü:

Perakende

Çalışma Şekli:

Haftaiçi 08.00 - 17.00