Role description

• The main responsibility of the ISO 27k Coordinator is to maintain conformity to the ISO 27k standard and thus enable Irdeto to maintain its ISO 27k certification.
• The ISO 27k Coordinator is responsible for assisting relevant stakeholders in measuring and optimizing their security related processes.
• The ISO 27k Coordinator is responsible for managing & improving the ISMS.
• The ISO 27k Coordinator is further responsible for:
  • The institutionalization of ISO27K as a continual global and cross functional program.
  • Extending the current scope of the ISO 27k certification to eventually encompass all aspects of security operations relevant processes within Irdeto.
  • Providing assisting to stakeholders with regards to ISO 27k.
• The ISO 27k Coordinator is responsible for evangelizing security within Irdeto.

Primary responsibilities

• ISO 27k Certificate – The ISO 27k Coordinator is responsible for maintaining conformance to the ISO 27k standards and thus ensuring Irdeto remains ISO 27k certified. Additionally, he / she is responsible for extending the current cope of the certificate to include new product entitlements and other parts of the business that should be covered by ISO 27k.
• ISO 27k Audits – The ISO 27k Coordinator is responsible for conducting and / managing audits on conformance to the ISO 27k standards as well as other relevant processes.
• Managing the ISMS – The ISO 27k Coordinator is responsible for managing the ISMS (Information Security Management Systems). This includes maintenance, extension and optimization of the ISMS.
• Risk Assessment – The ISO 27k Coordinator is to ensure that Risk Assessments are carried out frequently and that good Risk Management processes are in place in business critical areas of relevant departments.
• Measurements – The ISO 27k Coordinator is to establish & maintain meaningful measures of Irdeto’s management of security processes (in line with the upcoming 27k metrics guide).
• Process Improvement – The ISO 27k Coordinator will constantly be on the lookout for process improvements within the Security Operations department as well as assisting other departments in improving their security relevant processes.

Additional responsibilities

• Assist in establishing an appropriate document framework, document control, security and ISMS procedures.
• Assists in security operational activities performed within the department.
• Assists in the development of security policies, standards and guidelines.
• Train relevant Irdeto staff on ISO 27k and its benefits.
• Assist the marketing department in getting the most out of the ISO 27k certification from a marketing perspective.

Knowledge & Skill requirements

• Knowledge of and experience in ISO 27k implementation and auditing is a must, preferably in the High-Tech / Software Development industry, Pay TV or Secure Silicon market.
• Bachelors Degree, preferably in Information Technology or Computer Science.
• 5+ years of experience in Security Auditing / Risk Assessment / Quality Assurance / Business Process Engineering.
• Previous experience in implementation and maintenance of ISMS systems is a plus.
• A technical background / understanding of network security products, firewalls, cryptographic suites, and intruder detection and prevention systems would be helpful.
• Excellent English technical writing ability (ISO 27k related documentation).
• Chinese language skills would be beneficial.
• Able to work independently yet collaborate cross-functionally in a team environment.
• Ability to build and maintain positive relationships internally and externally.
• Strong communication skills.