Information Security Specialist (2)

Romania - Bucharest - Edenred Digital Center

Applications have closed

Edenred

Découvrez le groupe Edenred, la plateforme de service et de paiements qui accompagne au quotidien les acteurs du monde du travail dans 45 pays.

View all jobs at Edenred

Take a step forward and let Edenred surprise you.

Every day, we deliver innovative solutions to improve the life of millions of people, connecting employees, companies, and merchants all around the world. 

We know there are hundred ways for you to grow. With us, you will expand your skills in a multicultural, challenging, and dynamic environment. 

Dare to join Edenred and get ready to thrive in a global company that will offer you endless opportunities.

Edenred is all about meritocracy. You come as you are, and you contribute. Indeed, the Edenred Group recognizes, recruits and develops all talents and singularities.

We are committed to preventing all forms of discrimination and to providing all our candidates with equal opportunities regardless of their gender and gender expression, disability, origin, religious belief and sexual orientation or any other criteria.

The Edenred Digital Center (EDC) in Bucharest, Romania is Edenred Group's largest Digital hub for strategic Tech projects.

Context/ ROLE

Edenred is implementing a worldwide strategy to improve IT security & compliance and protect the business. This strategy is sustained by 4 major pillars.

1.         PEOPLE - Anchor cyberculture in the company with best practices, awareness, training;

2.         RULES - Enforce IT security policies applicable to the whole Group;

3.         DELIVERY - Implement global IT security projects & services to improve the security level;

4.         PERFORMANCE - Develop a culture of control & performance to assess the improvements.

We are looking for an Information Security (Governance, Risk and Compliance) Specialist, to be a member of the Global Security Team.

SCOPE & Key Responsibilities

Reporting to EMEA Information Security Leader the Information Security Specialist will support the EMEA zone of Mobility Business Line to improve governance, quality and accelerate delivery.

 

She/He will be an essential support in the region to improve the IT Security and Resilience of the BUs according to our roadmap and strategy: identify, protect & comply, detect, respond, recover, and train.

 

This position is an opportunity for she/he to work on strategic applications and projects with many experimented and involved business and IT stakeholders. It will be key to demonstrate project management skills, have a clear understanding of the topics and propose organizational and/or technical solutions to reach the objectives.

You will be responsible for:

o   Roll out the Security Program at Business Line level, including:

  • Maturity: assess and track roadmap implementation of security control framework in the Business Units
  • Support BUs in the Security Awareness process.
  • Security Committees & KPIs: preparation & present of information and of deliverables
  • IAM: Coordinate access reviews with BUs.
  • Cloud Security: Ensure security support for cloud migration process.

o   Coordinate the IT & Security resilience process supporting BU to build, perform/maintain Group IT & security resilience controls.

  • Update BIA definition and plan IT DRP implementation & exercises
  • Perform Cyber security incident response tabletop exercises

o   Managing cyber security incident in close collaboration with business, technology, legal stakeholders, and CIRT

  • Key Stakeholders:

The Information Security Specialist will mainly interact with internal stakeholders:

»  At BU level

o   IT Leaders (CTOs)

o   IT Application Owners & Business Analysts

o   IT Security, Architecture & Infrastructure Leaders

o   Data Protection Correspondent (DPC)

o   Human Resources, Legal and Business teams

 

»  At region/zone, business line and global level

o   Zone IT Security Leader (N+1)

o   IT Security Center of Expertise (AppSec, IAM, IT Compliance & Resilience, Cyber-Program, Security Operations)

o   Other Global functions in Global Technology (architecture and infrastructure)

Knowledge and SKILLS

Hard skills:

·       3+ years’ experience in cybersecurity

·       A significant experience in the following domain is essential:  IT & Cyber security Resilience operations (incl. BIA, DRP, BCP)

·       Experience in at least two of the following domains is expected:  Identity & Access Management (IAM), IT security incident response, cloud security, vulnerability management.

·       A good knowledge of cyber risk frameworks, secure development best practices or payment solutions security will be appreciated.​

Soft skills:

·       Pragmatic and solution oriented

·       Result and performance oriented with a can-do attitude and be able to persuade/ influence others in the organization.

·       Clear concise reporting, outlining key points

·       Work independently with agreed remit and autonomy

·       Passionate about functional and technical subjects with a proven and successful experience in deploying projects, in conjunction with international IT and business leaders

·       Manage several requests and parallel work streams

Language: fluent in English both written and spoken.

Education: Bachelor degree in Information Technologies or similar; a specialization in IT Security will be a plus

Nice to have:

·       You possess a certificate in risk/security (CISA, CISM or CISSP) or equivalent.

VIBE WITH US

Joining us means:

  • Taking part in an ambitious corporate project
  • Becoming part of a team that embraced the digitalization challenge and enjoys this transformation every day
  • Living our values every day: passions for customers, respect, imagination, simplicity, entrepreneurial spirit.

Because:

  • You will greatly contribute to build the project that will improve the customers’ experience on an international level
  • You will get exposure to various global cultures and teams
  • You will be working with the newest technologies to build new platforms
  • We offer you a very pleasant working environment, in the heart of Bucharest
  • We also have for you: meal tickets, holiday vouchers, health subscription, flexible hours, work from home, flexible benefits system, on-the-job training & e-learning platforms.

And we do not stop here!

Apply now and Vibe with Us!

* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰

Job stats:  3  1  0

Tags: Application security CISA CISM CISSP Cloud Compliance Governance IAM Incident response KPIs Strategy Vulnerability management

Perks/benefits: Career development Flex hours Health care

Region: Europe
Country: Romania

More jobs like this

Explore more career opportunities

Find even more open roles below ordered by popularity of job title or skills/products/technologies used.