Information Security Consultant

Since its founding in 2007, Diverto has been dedicated to its primary goal—making the digital space as secure as possible for all its clients, itself, and the wider community. Therefore, we have devoted all our efforts and work exclusively to information and cyber security. Creating a high level of cyber security is a continuous process that involves constant investment in our most valuable asset—the knowledge of our experts.

We are looking for Information Security Consultant and a member of our Governance, Risk and Compliance (GRC) team. By working in Diverto, you will have a chance to play a crucial role in protecting our Client’s information systems and ensuring compliance with regulatory requirements. You will be tasked with identifying risks, assessing compliance levels, recommending and implementing security enhancements across various departments and projects.

Location: Zagreb, Croatia (with option to work remotely)

RESPONSIBILITIES

• Development and implementation of information / cyber security management framework, strategic plans, policies and procedures
• Trusted advisor for management and consulting management on matters of information / cyber security
• Management of information security projects
• Information and cyber security risk analysis
• Compliance analysis, identification of non-conformities and suggesting recommendations with the aim of achieving compliance and development of information / cyber security management system according to standards, regulatory frameworks and good practices such as: ISO/IEC 27001, NIS2, DORA, NIST, GDPR and PCI DSS
• Conducting awareness trainings and educations on the subjects concerning information and cyber security
• Awareness testing by using social engineering methods

• University or professional education
• Work experience in the field of information security
• Excellence in identifying and solving problems
• Excellent communication skills
• Willingness for continuous development and a high level of responsibility
• Knowledge of Croatian and English in speech and writing
• Candidates with certificates in the field of information security (CISA, CISM, CISSP, ...) may have an advantage

We offer:

• Working in an advanced and motivating environment
• Continuous development and advancement through industry-relevant certifications (ISACA, ISC2...) and internal education/workshops
• Challenging local and global projects that involve current solutions
• Learning and sharing experiences with well-known and respected experts in the field of information/cyber security
• Additional and supplementary health insurance
• Multisport membership
• Comfortable office work + possibility of working from home as agreed