Information Security Specialist

About YSI

Yellow Social Interactive is a dynamic and innovative leader in the social gaming industry, dedicated to creating engaging and interactive experiences across various platforms. Our commitment to excellence and creativity sets us apart in the market.

We seek exceptional, talented individuals who aim for excellence. With offices in Gibraltar, Antigua, and bases in Malta and the Philippines, plus a global remote team, we welcome motivated people capable of building and scaling business functions.

Job Purpose

This role will play a key part in strengthening our security posture by contributing to the implementation, operation, and continuous improvement of our security controls, policies, and compliance efforts. The ideal candidate will have a solid foundation in cyber and information security, experience supporting ISO 27001 and SOC 2 certification projects. You’ll be hands-on with tools, processes, and documentation, embedding security across our cloud infrastructure, internal systems, and global operations.

Areas of Responsibility

• Develop and maintain Information Security policies, procedures, and processes.
• Lead and support compliance initiatives and certification projects (e.g., ISO 27001, SOC 2).
• Identify, track, and report Information Security issues and risks.
• Manage and monitor Information Security incidents, ensuring timely resolution and post-incident analysis.
• Administer and monitor the Security Information and Event Management (SIEM) platform, including rule tuning and alert handling.
• Collaborate with external consultants and service providers on security assessments and projects.
• Plan and conduct internal audits to evaluate the effectiveness of security controls.
• Design and execute social engineering simulations (e.g., phishing campaigns), and track outcomes.
• Conduct internal vulnerability scans, assess findings, and coordinate remediation efforts.
• Manage and support Business Continuity and Disaster Recovery planning, testing, and updates.
• Provide Information and Cyber Security consulting for ongoing business and technical projects, ensuring compliance with applicable standards.
• Support compliance and audit activities, including evidence collection and control testing.
• Contribute to the design and implementation of Information and Cyber Security technologies and tools.
• Oversee access control mechanisms, including user access reviews and privilege management.

Requirements

• Bachelor’s degree from departments such as Computer Engineering, Computer Science – Informatics, Management Information Systems etc.
• 3 years of experience in related fields.
• Knowledge of specialty level of ISO 27001 Information Security Management Standard
• Knowledge of SOC 2 compliance.
• Knowledge in Information and Cyber Security Standards
• Good knowledge of IT and Cloud Infrastructure, and Cloud Security Solutions.
• Good knowledge of operating systems, development lifecycle and database security.
• Knowledge of Vulnerability Scanning techniques/tools.
• Knowledge of Risk Assessment and Risk Treatment methodology.
• Knowledge of Business Continuity Management.

Desirable

• Experience with Apple MDM platforms (e.g., Jamf, Kandji) and endpoint management.
• Solid understanding of Google Workspace, especially security and configuration.
• Familiarity with Jira and Confluence for ticketing, documentation, and tracking.
• Exposure to change management and ITIL best practices.
• Strong analytical and problem-solving skills.
• Experience in project management and working in cross-functional teams.
• Detail-oriented, disciplined, and a collaborative team player with strong interpersonal skills.

• Competitive salary
• Private Health Insurance
• Flexibility to work remotely on occasion
• Training & Opportunities for professional development
• Dynamic and collaborative work environment
• Performance Bonus

Join our team and contribute to creating a vibrant and supportive social gaming community! If you are a proactive and player-focused professional, apply now and be part of our mission to provide exceptional player experiences.