Senior Information Security Specialist
hace 1 mes
Job Title: Senior Information Security Specialist
Job Summary:
We are seeking a highly skilled Senior Information Security Specialist to join our team at SGS. As a key member of our Technical Security Office, you will play a critical role in protecting our organization's assets, ensuring regulatory compliance, and managing cyber risk.
Key Responsibilities:
- Implement and monitor security controls to manage the technical security architecture of the organization, ensuring their effectiveness across the IT environment.
- Develop and maintain security policies, procedures, and hardening guides to ensure regulatory compliance and best practices.
- Support customer assessments, providing expertise on security evaluations and ensuring alignment with our security standards.
- Manage security exceptions, evaluating and documenting requests to ensure associated risks are appropriately controlled.
- Collaborate with business and IT areas to advise on information security requirements, ensuring effective controls are integrated into operational processes.
- Support third-party audits, including ISO 27001 certification audits, financial audits, and other compliance reviews related to information security.
- Participate in security assessments, findings, product evaluations, and propositions for further system security enhancement and S-SDLC.
- Ensure compliance with information security regulations, including ISO 27001, GDPR, NIST, and other relevant frameworks.
- Participate in the development and review of security policies, as well as the identification, assessment, and mitigation of cybersecurity risks.
- Evaluate security technologies, identifying and defining system and security requirements, baselines, and controls for existing and new IT infrastructure.
- Collaborate with IT, Development, Business lines, and Human Resources departments to ensure effective security controls and policy application.
- Design and document business continuity strategies to minimize disruptions due to unforeseen incidents, ensuring alignment with organizational risk management strategies and regulatory requirements.
- Develop security dashboards and monitor key security performance indicators (KPIs) to track the effectiveness of security controls and identify areas for improvement.
- Ensure policies meet compliance with regulatory requirements, including ISO 27001, GDPR, SOC2, and other relevant frameworks.
- Conduct assessments to identify gaps and make recommendations for improvement, identifying acceptable levels of residual risk and assisting with action plans, policy, and procedural changes for risk mitigation.
- Monitor the enterprise security awareness program, ensuring compliance across the organization.
- Prepare documentation, presentations, and reports for management, leading discussions on policy effectiveness and communicating results, including recommendations to improve technology and business practices.
Qualifications:
- Bachelor's degree in computer information systems, Information Technology, or a related field.
- Certifications in information security, such as CISSP, CISM, ISO 27001 Lead Auditor/Implementer, and CRISC, are highly desired.
- At least 3-5 years of experience in a similar information security role, preferably within a technical or internal security office environment.
- Advanced knowledge of cybersecurity regulations, including frameworks such as ISO 27001, NIST, PCI-DSS, and GDPR.
- Ability to manage compliance audits and GRC reporting.
- Lead Auditor 27001, CISA, and CISSP qualifications are desirable.
- Technical knowledge of network, databases, and operating system security, as well as understanding of the latest security principles, techniques, concepts, and protocols.
- Training and awareness in security governance, risk, and compliance.
- Knowledge in operating systems, applications, operations, networking, and telecommunications, databases, and logical security.
- Ability to work independently and as a team player in a fast-paced and international environment.
- Ability to manage multiple projects concurrently and work under pressure.
- Strong problem-solving and innovative and critical thinking.
- Fluent in English, with knowledge of other languages a plus.
- Proficient in MS Office tools, including Excel, Word, and PowerBi.
Additional Information:
This position is based in our office in Madrid and offers an excellent entry point into SGS, with opportunities for career development within the Group.
-
Senior Information Security Specialist
hace 4 semanas
Madrid, Madrid, España SGS A tiempo completoJob Title: Senior Information Security SpecialistJob Summary:We are seeking a highly skilled Senior Information Security Specialist to join our team at SGS. As a key member of our Technical Security Office, you will play a critical role in protecting our organization's assets, ensuring regulatory compliance, and managing cyber risk.Key...
-
Information Security Specialist
hace 4 semanas
Madrid, Madrid, España Amadeus A tiempo completoJob Title: Business Information Security SpecialistJob Summary:The Business Information Security Specialist supports the Business Unit Security Team in implementing global information security and privacy policies. This role involves monitoring and improving compliance with corporate and business unit information security and data privacy policies,...
-
Senior Information Security Specialist
hace 4 semanas
Madrid, Madrid, España Sgs A tiempo completoJob Description:The Senior Information Security Specialist will be part of the Technical Security Office (TSO) and will play a critical role in protecting the organization's assets, ensuring regulatory compliance, and managing cyber risk.Key Responsibilities:Implementation and monitoring of security controls: manage the technical security architecture of the...
-
Information Security Specialist
hace 7 días
Madrid, Madrid, España Integrity360 A tiempo completoCompany OverviewIntegrity360 is a leading cybersecurity specialist with offices across Europe, serving 300+ clients with comprehensive security services. Our four top-class Security Operation Centers offer end-to-end security solutions covering every angle of our clients' security needs.About UsOur company was founded on technical expertise and that...
-
Senior Information Security Specialist
hace 4 semanas
Madrid, Madrid, España Sgs A tiempo completoJob DescriptionThe Senior Information Security Specialist will be part of the Technical Security Office (TSO) and will play a critical role in protecting the organization's assets, ensuring regulatory compliance, and managing cyber risk.Key Responsibilities:Implementation and monitoring of security controls: manage the technical security architecture of the...
-
Information Security Specialist
hace 4 semanas
Madrid, Madrid, España GMV A tiempo completoJob Title: Information Security SpecialistAbout the Role:GMV is seeking a highly skilled Information Security Specialist to join our defense and security team. As a key member of our team, you will participate in activities related to the certification and accreditation processes of IT Information and Communication Systems for the management of classified...
-
Information Security Specialist
hace 4 semanas
Madrid, Madrid, España Monks A tiempo completoJob Title: Information Security SpecialistJob Summary: We are seeking an experienced Information Security Specialist to join our team at Monks. The successful candidate will be responsible for implementing and improving administrative and technical controls of our Information Security Management System (ISMS).Key Responsibilities:Contribute to the...
-
Business Information Security Specialist
hace 4 semanas
Madrid, Madrid, España 1043 Amadeus Soluciones Tecnologicas, S.A. A tiempo completoJob Title: Business Information Security SpecialistThe Business Information Security Specialist plays a crucial role in supporting the Business Unit Security Team in implementing global information security and privacy policies. This involves monitoring and improving compliance with corporate and business unit information security and data privacy policies,...
-
Senior Information Security Specialist
hace 4 semanas
Madrid, Madrid, España SGS A tiempo completoJob Title: Senior GRC Security EngineerThe Senior GRC Security Engineer will be part of the Technical Security Office (TSO) and will play a critical role in protecting the organization's assets, ensuring regulatory compliance, and managing cyber risk.Key Responsibilities:Implementation and monitoring of security controls: manage the technical security...
-
Business Information Security Specialist
hace 4 semanas
Madrid, Madrid, España Amadeus A tiempo completoJob Title: Business Information Security SpecialistJob Summary:We are seeking a highly skilled Business Information Security Specialist to join our team at Amadeus. As a key member of our Business Unit Security Team, you will play a critical role in implementing global information security and privacy policies.Key Responsibilities:Assist in monitoring and...
-
Information Security Specialist
hace 7 días
Madrid, Madrid, España SGS A tiempo completoWe are seeking an experienced Information Security Specialist to join our team at SGS in Madrid. As a key member of our Technical Security Office, you will play a vital role in protecting our organization's assets, ensuring regulatory compliance, and managing cyber risk.About the RoleJob Summary: The ideal candidate will have extensive experience in...
-
Business Information Security Specialist
hace 4 semanas
Madrid, Madrid, España 1043 Amadeus Soluciones Tecnologicas, S.A. A tiempo completoJob Title: Business Information Security SpecialistAbout the Role:The Business Information Security Specialist will support the Business Unit Security Team in implementing global information security and privacy policies. This includes monitoring and improving compliance with corporate and business unit information security and data privacy policies,...
-
Senior Information Security Specialist
hace 1 semana
Madrid, Madrid, España Sgs A tiempo completo**Job Summary**The Senior GRC Security Engineer will be responsible for protecting the organization's assets, ensuring regulatory compliance, and managing cyber risk. This role will play a critical part in the Technical Security Office (TSO) and will require the ability to implement and monitor security controls, develop security policies and procedures, and...
-
Senior Information Security Specialist
hace 4 semanas
Madrid, Madrid, España Sgs A tiempo completoJob DescriptionThe Senior GRC Security Engineer will be part of the Technical Security Office (TSO) and will play a critical role in protecting the organization's assets, ensuring regulatory compliance, and managing cyber risk.Key Responsibilities:Implementation and monitoring of security controls: manage the technical security architecture of the...
-
Senior Information Security Specialist
hace 4 semanas
Madrid, Madrid, España Sgs A tiempo completoJob DescriptionWe are SGS, the world's leading testing, inspection and certification company. Our mission is to enable a better, safer and more interconnected world. As a Senior GRC Security Engineer, you will play a critical role in protecting our organization's assets, ensuring regulatory compliance, and managing cyber risk.Key...
-
Senior Information Security Specialist
hace 4 semanas
Madrid, Madrid, España Sgs Société Générale De Surveillance Sa. A tiempo completoWe are SGS – the world's leading testing, inspection and certification company. We are recognized as the global benchmark for sustainability, quality and integrity. Our 99,600 employees operate a network of 2,600 offices and laboratories, working together to enable a better, safer and more interconnected world. Job Description The Senior GRC Security...
-
Senior Information Security Specialist
hace 4 semanas
Madrid, Madrid, España Sgs Société Générale De Surveillance Sa. A tiempo completoJob DescriptionThe Senior GRC Security Engineer will be part of the Technical Security Office (TSO) and will play a critical role in protecting the organization's assets, ensuring regulatory compliance, and managing cyber risk. This position requires a strong understanding of security controls, policies, and procedures to ensure the effective protection of...
-
Senior Information Security Specialist
hace 4 semanas
Madrid, Madrid, España SGS A tiempo completoJob SummaryThe Senior GRC Security Engineer will be part of the Technical Security Office (TSO) and will play a critical role in protecting the organization's assets, ensuring regulatory compliance, and managing cyber risk. This position is an excellent entry point into SGS and will open up opportunities to career development within the Group.Key...
-
Business Information Security Specialist
hace 4 semanas
Madrid, Madrid, España Amadeus A tiempo completoJob Title: Business Information Security SpecialistSummary: The Business Information Security Specialist supports the Business Unit Security Team in implementing global information security and privacy policies.Key Responsibilities:Assist in monitoring and improving compliance with corporate and business unit information security and data privacy policies,...
-
Business Information Security Specialist
hace 4 semanas
Madrid, Madrid, España Amadeus A tiempo completoJob Title Business Information Security Specialist About the Role The Business Information Security Specialist supports the Business Unit Security Team in the implementation of all aspects of global information security and privacy policies. This role assists in monitoring and improving the business unit's compliance with corporate and business unit...
