Information Security Officer (FR6425)

We are looking for an experienced and highly skilled Information Security Officer to strengthen our cybersecurity posture and safeguard our organization from evolving threats. The ideal candidate will have strong analytical skills, in-depth knowledge of security best practices, and a proactive mindset to prevent and mitigate risks. In addition to technical expertise, we seek a strong communicator who can educate and train employees on key security principles, fostering a culture of cybersecurity awareness across the company.

• Establish, implement, and maintain information security policies, standards, and procedures.
• Ensure compliance with cybersecurity regulatory requirements (i.e. NIS2, DSA, GDPR).
• Establish reporting of threats, vulnerabilities, audit findings and communicate via Line Management.
• Liaise with DSA, CSIRT, and other required authorities.
• Submit mandatory cybersecurity reports as required by DSA.
• Coordinate with regulatory bodies and report security incidents to the CSIRT (Computer Security Incident Response Team) within the required timeframe.
• Maintain and follow up the cybersecurity risk assessments and mitigating actions.
• Oversee technical and organizational security controls, including encryption, MFA, and network security measures.
• Conduct security audits and assessments to identify vulnerabilities, as well as ensuring full compliance with the relevant ISO standards and security requirements of GDPR.
• Be responsible for the maintenance of the ISO27001 Certification.
• Establish and maintain an incident response plan that aligns with regulatory reporting obligations.
• Ensure timely detection, reporting, and mitigation of security breaches.
• Ensure that third-party suppliers and service providers meet regulatory security requirements.
• Monitor vendors’ security posture to prevent supply chain attacks.
• Implement contractual obligations for suppliers regarding security compliance.
• Develop and implement cybersecurity training awareness program for employees and stakeholders.
• Liaise and work closely with other functions of the Company on routine basis or on specific projects aiming to advance the information security posture of Cablenet.
• Conduct phishing simulations and cybersecurity drills.
• Develop and test cybersecurity business continuity and disaster recovery plans.
• Ensure resilience against cyber threats through backup strategies and redundancy.
• Participate in cybersecurity exercises mandated by the EU via DSA.
• Ensure compliance with strict reporting deadlines.
• Monitor the performance of ISMS according to established KPIs and risk factors.

• BSc in Computer Science or computer engineering or any other related field
• Security certifications such as CISM and/or CISSP or MSc on Information Security
• Minimum 4 years’ experience in information security
• Practical experience in Risk, vulnerability assessments and penetration testing.
• Experience in Information Security Governance and demonstrated ability to develop policies and procedures
• Skilled across different areas of information security such as operations, physical, network, system and application security
• Strong interpersonal and organisational skills
• Experience in ISO 27001 compliance is highly desired
• Experience with SIEM, firewalls, threat intelligence tools, and incident response processes
• Excellent written and communication skills in both English and Greek languages

We provide an attractive compensation package that includes opportunities for career advancement, all within a pleasant, dynamic, and inclusive work environment.

• 13th salary
• Free Medical Insurance with serious illness allowance
• Insurance Plan with life benefit
• Performance-based bonus
• Training and Development through online platforms and on-the-job training
• Paid sick leave
• Wedding and childbirth gift
• Free fixed and mobile services

If you are interested, please submit your CV by April 29th, 2025. All applications will be handled with complete confidentiality.