Information Security Officer

●

3 months ago

Greece, Attiki, Neo Psychiko

Full Time

Mid-Level

Hybrid

Basic Information

EFA GROUP comprises companies in Aerospace, Security, Defense, and Industrial Cooperation with a solid international presence. EFA GROUP currently employs more than 220 people, most of whom are engineers and scientists. The GROUP has established offices across 6 international regions: Greece, Cyprus, Switzerland, USA, UAE, and Singapore to serve its customers in 34 countries worldwide. EFA GROUP includes EFA VENTURES (Supply Chain Management and integrated services), AEROSPACE VENTURES (Industrial Participation and related services), SCYTALYS (Systems Integration and Software), ES SYSTEMS (MEMs & IoT Integration), EPICOS (Global Defense B2B Information Platform), UCANDRONE (Unmanned Systems), AETHER AERONAUTICS (Target Drones), STHENOS AI (Intelligence Solutions).

EFA Group is currently looking for skilled Information Security Officer, responsible for supporting the implementation, maintenance, and continuous improvement of Information Security Management System (ISMS) in compliance with ISO 27001, ISO 27701, NIST 800-171, and other relevant cybersecurity frameworks.

Responsibilities

Security Compliance & Risk Management:

Ensure compliance with ISO 27001:2022, ISO 27701:2019, NIST 800-171, and other applicable cybersecurity standards.
Assist in security risk assessments, identifying and mitigating vulnerabilities within IT infrastructure and operations.
Monitor regulatory and customer security requirements, ensuring EFA Group maintains best security practices.
Support supplier and subcontractor security evaluations, ensuring compliance with EFA Group's security policies.

Incident Response & Threat Management:

Participate in information security incident response, including detection, analysis, containment, and remediation.
Assist in forensic investigations, analyzing security breaches and recommending corrective actions.
Support log analysis and security event monitoring, working with IT teams to enhance detection capabilities.
Ensure incident response plans are up to date, incorporating lessons learned from security incidents.

Policy & Documentation Management:

Maintain and update information security policies, procedures, and ISMS documentation.
Ensure effective document control and record management for ISMS compliance.
Support internal audits and certification renewals for security frameworks such as ISO 27001, NIST 800-171, and other contractual security obligations.
Assist in the review and evaluation of security controls, ensuring alignment with EFA Group's business objectives.

Security Awareness & Training:

Assist in the development and delivery of cybersecurity awareness training for employees and stakeholders.
Promote a security-first culture, ensuring that employees are informed about cybersecurity best practices.
Provide guidance to departments on handling sensitive information and implementing secure workflows.

Technology & Systems Security:

Collaborate with IT and Engineering teams to implement network security, endpoint protection, encryption, and identity management solutions.
Assist in evaluating and recommending cybersecurity tools and technologies to enhance security posture.
Support vulnerability assessments and penetration testing, ensuring proactive threat mitigation.
Monitor emerging cybersecurity threats, providing recommendations for continuous improvement.

Requirements

Cybersecurity

Incident Management

Information Security

Penetration Testing

SIEM

University degree in Cybersecurity, Information Security, IT, Computer Science, or a related field.
2+ years of experience in information security, cybersecurity risk management, or IT security operations.
Strong knowledge of ISO 27001, ISO 27701, NIST 800-171, and other cybersecurity frameworks.
Familiarity with security incident response, threat intelligence, and risk management.
Experience in vulnerability assessments, penetration testing, and security audits.
Ability to analyze and assess security risks, threats, and compliance gaps.
Understanding of network security, endpoint protection, and identity & access management.
Security Clearance or ability to obtain one.
Fluency in English and Greek (verbal and written).
Knowledge of cybersecurity tools (e.g., SIEM, IDS/IPS, vulnerability scanners, endpoint security).
Strong analytical and problem-solving skills, with attention to detail.
Excellent communication and teamwork abilities, able to work across departments.

Benefits

Continuous education

Private health insurance

Remote work options

Competitive remuneration package
Private Medical Insurance package
Continuous learning in new technologies
Opportunity to work in large-scale projects with talented people

Information Security Officer

Basic Information

Responsibilities

Requirements

Benefits

About the company

About the company

Information Security Officer

Basic Information

Responsibilities

Requirements

Benefits

About the company

About the company

No longer accepting applications