Product Information Security GRC Specialist
Mastercard
- תל אביב
- משרה קבועה
- משרה מלאה
- Identify, analyze, and integrate information security standards and regulations into the product
- Identify, analyze, and integrate cybersecurity technologies into the product and define how the indicators for these technologies can be gathered automatically and scored
- Maintain and update the product’s risk quantification methodology (e.g., attack methods. threat actors, controls, etc.)
- Identify and design product features
- Collaborate with R&D team to build and integrate these capabilities
- Act as the subject matter expert and provide support to clients with the product's capabilities and methodology
- Five plus years of solid experience conducting risk and security assessments, including cloud security assessments
- A knowledge of security frameworks such as NIST, ISO 2700X, PCI-DSS, FFIEC, Cloud Security Alliance, and other frameworks. Experience in conducting assessments based on standards - advantage
- A deep knowledge of cyber security technologies. Hands-on experience - advantage
- A deep Knowledge of cyber threat frameworks such as CAPEC, Cyber Kill Chain, and MITRE ATT&CK
- Experience in gathering and analyzing cyber threat intelligence - advantage
- Experience in conducting IoT and OT risk assessments - advantage
- Must have strong analytical and critical-thinking skills
- High attention to detail and a self-starter and learner who can work independently, multi-task, and adjust to shifting priorities
- Ability to work as part of a global team with global management
- Experience adhering to rigorous and detailed instructions while also thinking creatively and solving problems
- Great communication skills
- Good teamwork and time management skills
- Strong oral and written communication skills
- Fluent in English