Full time Erbil
Title: Information Security Officer
Location: Erbil
Available Until: 7/23/2026
Key Responsibilities:
- Support ISO 27001 Information Security Management System (ISMS).
- Support PCI-DSS compliance activities and evidence collection.
- Maintain Risk Register and Risk Treatment Plans.
- Support Internal and External Audits.
- Track corrective actions and compliance findings.
- Review and maintain Information Security policies and procedures.
- Conduct Vendor Security Assessments and Third-Party Reviews.
- Support regulatory requirements and compliance activities.
- Coordinate Security Awareness activities with HR.
- Prepare compliance and management reports.
Requirements – Technical (Must-Have):
- 3–5 years of experience in Information Security, Compliance, Risk, or Audit.
- Experience with ISO 27001.
- Experience with PCI-DSS.
- Experience with Risk Management.
- Experience supporting audits and compliance reviews.
- Strong documentation and reporting skills.
