Responsibilities
Serve as the central contact for information security-related matters in service provisioning, interfacing with business units, partners, customers, and safeguarding functions, while providing consulting and liaison with stakeholders.
Promote knowledge and awareness of security requirements and processes, ensuring effective implementation of security principles throughout the service lifecycle, including external parties.
Coordinate, track, and monitor information security risks with risk owners, conducting regular security review meetings to assess and address risks.
Systematically assess the effectiveness of security controls in services provided, ensuring compliance with Group-wide standards, regulatory requirements, and industry standards.
Develop security policies, guidelines, and procedures, contributing to the definition of contractual security provisions for third-party management.
Manage security risk assessments, addressing deviations from security policies, and developing strategies to mitigate identified information security risks.
Identify protection goals, objectives, and metrics to oversee the implementation and compliance of security standards in all services and projects.
What You Bring
University degree in computer science, natural sciences, or equivalent professional experience, with over 5 years of experience in IT and information security-related fields.
Sound knowledge of IT security technology, architecture, and processes, including information security management systems and industry standards (ISO2700x, COBIT5/2019, ISO31000, ISO42001, NIS2, DORA, NIST).
Proven experience in developing information security policies and procedures, with a strong track record in supplier management, IT outsourcing, and defining/monitoring contractual security provisions.
Technical skills in Power BI, Power Automate and AI.
Project management and leadership experience in complex enterprise environments, preferably within agile teams, demonstrating the ability to cope with high workloads and exercise independence, judgement, and initiative.
Proficiency in English with excellent international communication skills, capable of preparing professional documentation for various audiences and senior management.
#J-18808-Ljbffr