The Role 

Our Information Security team, a core part of Kindred's wider Security department, is committed to upholding the highest standards in protecting our information assets. We're looking for a proactive Information Security Specialist to join our diverse and dynamic team. 

In this role, you will work across a broad range of security domains while supporting and collaborating with the Information Technology departments in all matters relating to security.  

You will play an essential role in proactively ensuring that Kindred meets its security objectives and aligns to all applicable information security requirements.  

Your Profile 

• 3-5 years of experience in information security. 

• Knowledge of ISO/IEC-27001/2, PCI-DSS and other related security standards and frameworks. 

• Proven track record of leading large-scale security projects across technical and administrative domains. 

• A pragmatic approach to information security, balancing security needs with business goals. 

• Experience conducting internal or external audits. 

• Strong communication and interpersonal skills, with the ability to translate complex security information for all levels of the organization. 

• Passion for information security across a broad range of domains and desire to develop further as an information security expert. 

Desirable 

• Bachelor's degree in Information Security, Computer Science, or a related field. 

• Relevant security certifications such as CISSP, CISM, CISA, CRISC and/or ISO-27001 LA/LI are a plus. 

Key Responsibilities  

• Ensure compliance with ISO/IEC 27001, relevant standards, and local regulations by maintaining and improving the Information Security Management System (ISMS) and its supporting documents.

• Develop and report on key performance indicators (KPIs) to measure security program effectiveness. 

• Collaborate with cross-functional teams to integrate security into processes. 

• Propose and execute security initiatives to address gaps and enhance information security maturity across the organization. 

• Manage and facilitate external information security audits, including coordinating activities, preparing teams for testing, and addressing findings promptly. 

• Conduct information security risk assessments and vendor security assessments, register risks, and coordinate mitigation actions. 

• Provide advisory services on compliance and security for new business initiatives and high-risk activities or projects. 

• Promote information security awareness across the organization through effective communication and training. 

• Stay informed about the latest security trends, threats, and technologies to continuously improve the security posture.