044 50 50 60 E HËNË - E DIEL 08:00 – 21:00 WhatsApp



  • Develop and maintain security architecture and security policies, principles, and standards
  • Work with assigned business units and other risk functions to identify security requirements, using methods that may include risk and business impact assessments
  • Assist in the coordination and completion of information security operations documentation
  • Work with IT leadership to develop strategies and plans to enforce security requirements and address identified risks
  • Report to management on residual risk, vulnerabilities, and other security exposures, including misuse of information assets and noncompliance
  • Work with infrastructure team members to identify, select, and implement technical controls
  • Develop security processes and procedures, and support service-level agreements (SLAs) to ensure that security controls are managed and maintained
  • Research, evaluate, and recommend information-security-related hardware and software
  • Provide second and third-level support and analysis during and after a security incident
  • Assist security administrators and IT staff in the resolution of reported security incidents
  • Participate in security investigations and compliance reviews, as requested by internal or external auditors
  • Monitor daily or weekly reports and security logs for unusual events and act as a liaison between incident response leads and subject matter experts
  • Manage relationships with the audit group and receive audit findings, and manage the collection of responses and remediation plans with owners
  • Provide oversight and management of audit finding remediation, including generating requirements for full remediation, providing feedback and suggestions on managerial responses to findings, and tracking progress and providing status and updates to the enterprise compliance team for reporting purposes
  • Identify regulatory changes that will affect information security policy, standards and procedures, and recommends appropriate changes.


  • Bachelor’s degree; or equivalent combination of education and relevant experience
  • Audit, Compliance, or Governance experience, preferred
  • 2 years’ IT and Network Security experience
  • In-depth knowledge and understanding of information risk concepts and principles, as a means of relating business needs to security controls
  • Knowledge of and experience in developing and documenting security architecture and plans, including strategic, tactical and project plans
  • Knowledge of common information security management frameworks
  • Skilled in performing risk, business impact, control, and vulnerability assessments
  • Excellent technical knowledge of mainstream operating systems and a wide range of security technologies, such as network security appliances, identity and access management (IAM) systems, anti-malware solutions, automated policy compliance tools, and desktop security tools
  • Ability to develop, document, and maintain security policies, processes, procedures, and standards
  • Knowledge of network infrastructure, including routers, switches, firewalls, and the associated network protocols and concepts
  • Strong verbal and written communication skills

Please send CV at: hr@iutecredit.al
All the applications will be treated with high confidentiality.