Information Security and Operational Risk Manager

UAB eCREDO is seeking to recruit a full-time officer who will be responsible for the Company's Information Security and Operational Risk Management. The person undertaking this role will be reporting to the Head of Risk Management.

Minimum Qualifications are:

• University Degree in Computer Science, Information Science, Risk Management or other related field
• At least 3 years' experience in the payments/financial sector with focus on Operational Risk Management, Information Security monitoring, Cybersecurity or other related areas
• Experience and/or active involvement in security compliance with one of the following standards: ISO27001, CISSP, CISM will be considered an advantage
• Excellent written and verbal communications skills in Lithuanian and English

The duties and responsibilities of the Information Security and Operational Risk include:

• Designing, developing and maintaning strong Operational Risk & Information Security Framework, policies & procedures
• Providing information security awareness training to the Company's personnel
• Creating and managing security strategies/penetration testing
• Overseeing information security audits
• Implement and oversee technological upgrades, improvements and major changes to the information security enviroment
• Serve as a focal point of contact for third-party providers, clients or the Company
• Ensure that contracts and service level agreements with third-party providers include appropriate and proportionate information to security-related objectives and measures
• Report any operational and securtiy incidents to the Management Board and relevant Supervisory Authorities
• Manage and configure physical security, disaster recovery and data backup systems
• Developing remediation plans and timelines with emphasis on sustainability
• Using analytics to identify potential risk areas, trends, perform thematic analysis, generate heat maps
• Managing securtiy team members and all information security personnel