Yalantis is a software engineering and IT consulting company in the outsourcing market. Our team has more than 500 specialists and continues to grow. Join and cooperate with us in Dnipro, Kyiv, Larnaca (Cyprus), Warsaw (Poland) and remotely from any city of Ukraine.
Security Compliance Specialist (ISO 27001)
We are looking for a Security Compliance Specialist to assess, design and implement Information Security Management Systems. The role focuses on gap assessments, building practical compliance roadmaps and supporting organizations through ISO 27001 certification. You will work with technical teams and management to integrate security and compliance into daily operations.
Responsibilities
- Implement, operate and improve an ISO/IEC 27001-aligned ISMS across the organization.
- Perform security gap assessments and compliance readiness evaluations.
- Conduct risk assessments and manage risk treatment plans.
- Develop and align security policies, procedures and ISMS documentation.
- Conduct and support internal audits, prepare audit evidence and track remediation activities.
- Support external audits and coordinate with certification bodies.
- Translate compliance requirements into practical technical and organizational controls.
Requirements
- Hands‑on experience with ISO/IEC 27001 implementation.
- Strong knowledge of ISO/IEC 27001 and related standards such as ISO/IEC 27002, ISO/IEC 27005, ISO/IEC 27035 and ISO 22301.
- Solid understanding of major security frameworks and regulatory requirements, including NIST CSF, SOC 2, HIPAA, GDPR and DORA.
- Understanding of modern technologies, cloud environments, and security controls (IAM, encryption, logging, endpoint and network security).
- High‑level understanding of the software development lifecycle (SDLC).
- Experience in conducting internal security audits and understanding of ISO 19011 is a strong plus.
- Strong client communication skills and ability to explain security topics to technical and business stakeholders.
- Strong documentation and analytical skills.
- English: Upper‑Intermediate or higher.
- ISO/IEC 27001 Lead Implementer or Lead Auditor certification (or willingness to obtain).
Our Benefits
- Professional growth: Individual development plan, mentorship, reimbursement for professional certifications and English lessons, access to professional courses in Corporate Learning Management System.
- Community: Tech community and knowledge‑sharing events, English speaking club, corporate library and book club, volunteering and charity initiatives.
- Wellbeing: Medical insurance, regular medical check‑ups, sport reimbursement, paid vacation and sick leave, mental health support and events.
- Work environment: Fully‑equipped offices, top‑notch equipment, flexible work format, activities both in‑office and online, Y‑bucks and access to the Yalantis store.
