InfoSec Compliance Analyst at DigiOutsource

Who we’re looking for

• We’re on a thrilling journey of growth and innovation, and we need passionate, driven individuals to join us. At DigiOutsource, every day is action-packed, and we expect you to bring your A-game. In return, you’ll find a supportive environment where your skills can flourish and your career can soar.
• Ready to become a game-changer? Supercharge your career with us and be part of something extraordinary.

Why we need you

• We’re on a mission to create extraordinary experiences for our customers, and we believe that your unique skills, passion and superdrive will help us achieve our vision.
• As an InfoSec Compliance Analyst you’ll be supporting the team to achieve and conform to various Regulations, certifications, and standards such as GDPR, POPIA and ISO 27001:2022. This role exists to monitor, manage the outputs of important controls, and contribute to internal and external assurance activities. This will help us excel at InfoSec best practices to stay ahead of the game.

What you’ll be doing

As part of your role, your responsibilities will include:

• Assisting DOS in any activities required to achieve and maintain compliance of InfoSec standards/compliance and certification.
• Supporting joint operations with the DOS Teams e.g., assistance with license applications or the maintenance thereof where applicable.
• Performing gap analyses and developing associated roadmap(s) in the performance, maintenance of regulations and standards life cycles.
• Liaising and maintaining close working relationships with third party companies involved in the operations of DOS licenses.
• Preparing and coordinating InfoSec audits (e.g., ISO 27001:2022)
• Reporting and tracking incidents and vulnerabilities.
• Monitoring and reporting of InfoSec Objectives.
• Performing, documenting, reporting and monitoring InfoSec Risks.
• Reviewing and updating policy, procedure and process documentation.
• Performing InfoSec supplier risk assessments.
• Developing material for user awareness and training.
• Reviewing and escalating Data Loss Prevention incidents.
• Maintaining a solid knowledge base of both regional and international regulations applicable to DOS, its partners, and services.
• Compiling and maintaining reports & documentation.
• Assisting in ad hoc duties as and when required.

Essential skills you’ll bring to the table

The necessary skills that we require for this role include:

• Strong verbal and written communication skills, with the ability to convey complex ideas clearly and effectively
• Experience working collaboratively in cross-functional teams, with a focus on achieving shared goals
• Expertise in managing multiple projects simultaneously, with a track record of delivering on time and within scope
• Exceptional attention to detail, ensuring high standards of quality in all outputs
• Ability to adapt quickly to changing environments and priorities, maintaining effectiveness in dynamic situations
• Experience and ability to participate in technical audits for IT and IT security controls.
• Exceptional ability to audit, assess, document, develop, manage and maintain DOS InfoSec compliance efforts.
• Excellent working knowledge and understanding of Information Security Controls, including ISO 27001:2022; POPIA/GDPR and other applicable regulations and standards.
• 3 years’ experience in a similar role / Compliance Analyst role
• Demonstrate a good practical understanding how to design, create, manage, and deploy data principles, corporate policy, and standards.

Desirable skills you’ve got up your sleeve

It would be great if you also have some of the following skills:

• Bachelor’s degree in information technology, cybersecurity or related field
• ISO 27001 Lead auditor or Lead implementor
• Experience of working in a process driven environment.
• Highly motivated, able to take ownership of tasks and see them through to completion.
• Perform well in critical situations.
• Strong influencing skills.
• Must be able to interface and coordinate work effectively with colleagues and vendors in global locations and time zones.