Shell

Job Description:

Job Purpose:

The primary objective of the IT Compliance Analyst is to:

• Ensure that Security controls for Systems are in place, Provide for support IS027001 Certification Process and to implement IT Security Policies as necessary.

• Working in full compliance with ISO9001 Quality Management System and ISO/IEC 27001 Information Security Management System.

• Fully compliant with TS EN ISO 14001 Environmental Management System standards/procedures/work instructions

• Responsible for protecting IT infrastructure by ensuring confidentiality, integrity and availability of information assets

• Participate in the establishment and maintenance of information security policies and standards that support business goals and objectives

• Apply metrics to measure, monitor, and report on the effectiveness of information security controls and compliance with information security policies

• Control and ensure that information security is not compromised

• Responsible with setting the rules and policies for physical security of the system room.

• Maintain corporate level certification standards (ISO27001)

• Ensure that the information security management system conforms to the requirements of this International standard

• Report on the performance of the information security management system to top management.

• Revisit Critical User List regarding Information Security Management Systems.

• Working in full compliance with ISO9001 Quality Management System and ISO27001 Information Security Management System.

• Sustain the system availability within given SLAs especially on critical systems .

• Ensure Enterprise Security Management reports for servers are not returned red. Remediate when they are.

• Maintain HSE standards according to the Group standards and guidelines.

• Provide infrastructure consultancy for local / non-local projects. Design and advise suitable topology in line with Shell standards and policies.

• Provide and maintain licenses including SSL Certification, OS, MS Office and Databases etc.

• Administration of high-privileged accounts; they are restricted to appropriate personnel on a need-to-know basis and is granted and maintained by designated personnel.

Bachelor’s degree in Engineering (Computer, Systems, Electrical - Electronic Engineering etc.) Management Information Systems, or related fields

• Minimum 5 years' experience in IT Security or Cyber Defense and ability to adopt new security techniques quickly.

• Preferred Experienced in ISO27001 Process and Information Security Guidline

• Experience and knowledge of IT Security Policies.

• Experience and knowledge of IT Infrastructure Projects.

• Good knowledge of WINTEL based server

• Experience and knowledge of Domain and SSL management.

• Preferred Experience and knowledge ITIL Certification

• Preferred Experience and knowledge Microsoft OS and Azure Certification

• Good communication skills.

• Vendor management skills

• Able to deliver under time pressure and deliver on set deadlines.

• Good business Turkish and English, written and oral

• Good PC knowledge essential.

• Ability to work independent

• Ability to make decisions under pressure.

• Team player.