Job Description
Motor Oil Hellas (MOH) is an energy group based in Greece with one of the top refineries in Europe. The Group has a significant presence in trade due to the liquid fuel retail networks, in the lubricants sector and in the liquified gas sector. The Group is actively engaged in the power and natural gas market as well as in the Renewable Energy Sector. We strive to develop our people to their highest potential, through continuous education and assignment of challenging projects.
We are searching to hire a Cybersecurity Specialist | Governance, Risk, Compliance to join the MOH Team.
The individual will be primarily responsible for the effectiveness of the information security governance program, ensuring compliance with relevant laws, regulations, and policies as well as monitoring of risks associated with the organization’s information security practices.
The position is located in Perissos.
Main Responsibilities
- Supports the development and maintenance of an information security governance framework that includes policies, procedures, standards, and guidelines to ensure the confidentiality, integrity, and availability of information assets.
- Supports development of IS Risk framework and assists in identifying and assessing information security risks to the organization
- Supports the information security risk management processes for onboarding and oversight of all new and existing third-party vendor relationships
- Supports compliance to relevant laws, regulations, and policies, including but not limited to data protection, privacy, and information security standards such as ISO 27001, NIST, and PCI DSS
- Collaborates with internal stakeholders, to ensure that information security is integrated into business processes and systems.
- Contributes to the development and maintenance of metrics for measuring information security effectiveness
- Facilitates gathering, reviewing, and assembling internal and external audit evidence
- Contributes to the development and delivery of a comprehensive information security training and awareness program for employees
Main Qualifications
- Bachelor’s degree in Information Technology, Computer Science or related field
- Master’s degree in Information Security will be preferred
- At least 3 years professional experience preferably on Information Security GRC
- Prior experience on assessing, designing and implementing security strategies, governance frameworks over processes and controls
- Experience in data classification labelling, data loss prevention exercises and controls / mechanisms enforcement
- Excellent command of the Greek and English language (oral and written)
- Auditor Certification of ISO27001 will be preferred
Key Skill/ Attributes
- Communication and interpersonal skills
- Analytical and problem-solving skills
- Organizational & time management skills
- Teamwork spirit & collaboration
