Dive right in. Swim with our pod.
Orca Security ensures the security of our customer's data by adhering to industry best practices and maintaining our compliance with various security frameworks. We are looking for a motivated Information Security & Compliance Expert to help us build and maintain our security programs. The successful leader will possess strong communication skills and experience in security governance, security risk management, security operations, and/or cyber incident response programs.
On a typical day you'll:
Formalize and implement methodologies, policies and procedures, especially regulatory and ethical standards for cyber protection (SOC 2, ISO 27001, GDPR, etc.).
Conduct security program assessments, such as incident response tests.
Build roadmaps to improve our internal security posture.
Implement privacy and data protection standards and regulations (Israeli and
Conduct risk assessments and risk remediation plans – current and proposed legislation, enforcing regulations, recommending new procedures, and complying with legal requirements.
Provide professional guidance in cyber protection.
Manage and monitor supply chain security, business continuity, disaster recovery and business impact analysis.
7+ years of professional information security experience.
Expertise in one or more of the following areas: Incident Response, Security Operations,
Security Governance, Cloud Security, Data Protection, Network Security, Endpoint Security, IAM.
Basic understanding of regulatory requirements such as GDPR.
Expert in at least two of the following security frameworks such as ISO 27001, SOC 2
Type II, NIST.
Basic knowledge of tools used in penetration testing, security event analysis, incident response, computer forensics, malware analysis or other areas of security operations.
Basic understanding of security controls for common platforms and devices