Senior Information Security Officer

Mendix – the leading low-code application development platform:The Mendix Platform uses visual modeling to abstract long-form coding out of application development. Our customers use Mendix to create and deploy better software for the enterprise, faster. Mendix enables collaboration between business users and developers to work together throughout the development process.
Read our Customer Stories to learn more about the wealth of software and solutions global organizations have built with the Platform.
At Mendix we strive to maintain a diverse, open, and safe working environment where people can be their true selves. We value every voice, celebrate individuality, and appreciate the diversity of thought and experience. People who work here are driven, smart, and really good at what they do.
As this market evolves, we encourage people of all skill levels to work with the platform, both for clients and candidates. Apply today to discover how you can make a meaningful impact with Mendix.
Mendix holds and maintains several certifications and assurance reports, like ISO/IEC 27001, PCI DSS Level 1, SOC 1 Type II and SOC 2 Type II reports. To maintain our certifications and reports, we engage closely with a team of experts to work on the continuous improvement of our control framework and its implementation. You are someone that can be the successful bridge between security and business users from various countries.

Duties & Responsibilities:

• Collaborate with team members and business stakeholders to raise Mendix’ security posture
• Support the business organization in implementation and improving security controls and operational processes
• Facilitate and guide third-party security audits
• Assist in incident management
• Update and maintain policies and procedures based on control requirements
• Implement applicable requirements in collaboration with stakeholders
• Monitor identified risks and contribute towards their mitigation
• Support efforts to raise information security awareness within the organization

Qualifications:

• 3-5 years experience in a position with significant information security responsibilities
• Independent and active information security certification (e.g. CISM, CISSP) is required
• Bachelor’s or Master’s degree in computer information systems, computer science, accounting information systems, computer engineering, industrial engineering, or related program

Experience & Skills:

• Demonstrates a high level of initiative and self-direction
• Experience in IT audit, compliance, security standards, laws and regulations, and cybersecurity frameworks (e.g., PCI DSS, ISO/IEC 27001, HIPAA, GDPR, SOC)
• Possesses practical knowledge of technology, internal audit, external audit and risk management
• Exhibits excellent analytical, technical and problem-solving skills, with strong attention to detail
• Proficient in verbal and written English communication and collaboration
• Naturally connects with others, enjoys building relationships, and setting shared goals
• Experience in the software development industry is preferred

Working for Mendix and with our Customers means your reliability has to be beyond any doubt, and therefore every employment is subject to an onboarding screening and the condition precedent a Certificate of Conduct is provided that demonstrates you did not commit any offences that are relevant to the performance of your function.  #LI-Hybrid#LI-RI1
If you see a job description and think, “I’d be perfect for that” but your experience doesn’t align perfectly with the qualifications – don’t let that hold you back. We’re always eager to hire talented, passionate candidates – so give it a try and apply.
Equal Employment Opportunity StatementMendix/Siemens is an Equal Opportunity and Affirmative Action Employer encouraging diversity in the workplace. All qualified applicants will receive consideration for employment without regard to their race, color, creed, religion, national origin, citizenship status, ancestry, sex, age, physical or mental disability unrelated to ability, marital status, family responsibilities, pregnancy, genetic information, sexual orientation, gender expression, gender identity, transgender, sex stereotyping, order of protection status, protected veteran or military status, or an unfavorable discharge from military service, and other categories protected by federal, state or local law.
EEO is the LawApplicants and employees are protected under Federal law from discrimination. To learn more, Click here.
Pay Transparency Non-Discrimination ProvisionSiemens follows Executive Order 11246, including the Pay Transparency Nondiscrimination Provision. To learn more, Click here.
California Privacy NoticeCalifornia residents have the right to receive additional notices about their personal information. To learn more, click here.