Job details

Information Security Specialist

Get a free resume review

About YSI

Yellow Social Interactive is a dynamic and innovative leader in the social gaming industry, dedicated to creating engaging and interactive experiences across various platforms. Our commitment to excellence and creativity sets us apart in the market.

We seek exceptional, talented individuals who aim for excellence. With offices in Gibraltar, Antigua, and bases in Malta and the Philippines, plus a global remote team, we welcome motivated people capable of building and scaling business functions.

Job Purpose

This role will play a key part in strengthening our security posture by contributing to the implementation, operation, and continuous improvement of our security controls, policies, and compliance efforts. The ideal candidate will have a solid foundation in cyber and information security, experience supporting ISO 27001 and SOC 2 certification projects. You’ll be hands-on with tools, processes, and documentation, embedding security across our cloud infrastructure, internal systems, and global operations.

Areas of Responsibility

Develop and maintain Information Security policies, procedures, and processes.
Lead and support compliance initiatives and certification projects (e.g., ISO 27001, SOC 2).
Identify, track, and report Information Security issues and risks.
Manage and monitor Information Security incidents, ensuring timely resolution and post-incident analysis.
Administer and monitor the Security Information and Event Management (SIEM) platform, including rule tuning and alert handling.
Collaborate with external consultants and service providers on security assessments and projects.
Plan and conduct internal audits to evaluate the effectiveness of security controls.
Design and execute social engineering simulations (e.g., phishing campaigns), and track outcomes.
Conduct internal vulnerability scans, assess findings, and coordinate remediation efforts.
Manage and support Business Continuity and Disaster Recovery planning, testing, and updates.
Provide Information and Cyber Security consulting for ongoing business and technical projects, ensuring compliance with applicable standards.
Support compliance and audit activities, including evidence collection and control testing.
Contribute to the design and implementation of Information and Cyber Security technologies and tools.
Oversee access control mechanisms, including user access reviews and privilege management.

Requirements

Bachelor’s degree from departments such as Computer Engineering, Computer Science – Informatics, Management Information Systems etc.
3 years of experience in related fields.
Knowledge of specialty level of ISO 27001 Information Security Management Standard
Knowledge of SOC 2 compliance.
Knowledge in Information and Cyber Security Standards
Good knowledge of IT and Cloud Infrastructure, and Cloud Security Solutions.
Good knowledge of operating systems, development lifecycle and database security.
Knowledge of Vulnerability Scanning techniques/tools.
Knowledge of Risk Assessment and Risk Treatment methodology.
Knowledge of Business Continuity Management.

Desirable

Experience with Apple MDM platforms (e.g., Jamf, Kandji) and endpoint management.
Solid understanding of Google Workspace, especially security and configuration.
Familiarity with Jira and Confluence for ticketing, documentation, and tracking.
Exposure to change management and ITIL best practices.
Strong analytical and problem-solving skills.
Experience in project management and working in cross-functional teams.
Detail-oriented, disciplined, and a collaborative team player with strong interpersonal skills.

Competitive salary
Private Health Insurance
Flexibility to work remotely on occasion
Training & Opportunities for professional development
Dynamic and collaborative work environment
Performance Bonus

Join our team and contribute to creating a vibrant and supportive social gaming community! If you are a proactive and player-focused professional, apply now and be part of our mission to provide exceptional player experiences.

Average salary estimate

$70000 / YEARLY (est.)

min

max

$60000K

$80000K

If an employer mentions a salary or salary range on their job, we display it as an "Employer Estimate". If a job has no salary data, Rise displays an estimate if available.

What You Should Know About Information Security Specialist, Yellow Social Interactive

YSI Yellow Social Interactive is excited to announce an opening for an Information Security Specialist! As a key player in our dynamic company, you'll be at the forefront of strengthening our security posture in the social gaming industry. We're not just looking for someone with technical expertise; we want a proactive individual who embodies creativity and innovation. Your role will involve implementing and improving our security controls and policies, ensuring compliance with standards like ISO 27001 and SOC 2. You'll get hands-on with tools and processes, embedding security protocols across our cloud infrastructure and internal systems. From leading compliance initiatives to conducting internal audits and vulnerability scans, your contributions will be crucial in protecting our organization. Plus, you'll have the opportunity to work with external consultants on security assessments and design impactful social engineering simulations. We're proud of our diverse team that spans across Gibraltar, Antigua, Malta, and the Philippines, and we welcome talented individuals who can work both independently and collaboratively. If you're ready to take on a critical role in a company that values excellence, creativity, and collaboration, we want to hear from you!

Frequently Asked Questions (FAQs) for Information Security Specialist Role at Yellow Social Interactive

What are the responsibilities of the Information Security Specialist at YSI Yellow Social Interactive?

As an Information Security Specialist at YSI Yellow Social Interactive, your key responsibilities include developing and maintaining information security policies, leading compliance initiatives, managing security incidents, administering the SIEM platform, and conducting internal audits. You will also be tasked with designing and executing social engineering simulations and managing business continuity and disaster recovery planning, ensuring that security measures align with industry standards.