Head of Compliance & IT Security, Cloud Protection for Salesforce
Tasks
- Build and maintain ISMS
- Collect audit evidence
- Conduct internal audits
- Coordinate ISAE 3000 Type I and Type II engagements
- Coordinate security control compliance with control owners
- Guide governance risk and compliance best practices
- Lead ISO 27001 cycle
- Maintain security policies, standards, procedures
- Manage auditor communication
- Monitor NIS2 compliance continuously
- Oversee third party security risk assessments
- Perform risk assessments
- Provide security awareness training
- Remediate audit findings
- Review and approve exceptions risks and mitigation plans
- Review third-party security controls
- Run management reviews
- Serve as contact for external auditors and customers
- Support Business Continuity Planning
- Support customer due diligence
- Support disaster recovery planning
- Support incident response processes
- Support secure configuration
- Support vulnerability management
- Track regulatory changes and update controls
- Validate effectiveness of security controls
Perks/Benefits
- Central Helsinki office
- Collaborative team
- Continuous improvement culture
- Exposure across the organization
- Flexible hybrid work model
- International team
- Opportunity to shape security roadmap
Skills/Tech-stack
Audit evidence | Business Continuity | Control Implementation | Disaster Recovery | ISAE 3000 | ISMS | ISO 27001 | Incident Response | Internal Audit | Management Review | NIS2 | Project Management | Remediation | Risk Assessment | Risk Management | Secure Configuration | Security Governance | Security Policy | Security controls | Security standards | Third Party | Third-Party Risk | Third-party risk management | Vendor Risk | Vendor Risk Assessment | Vulnerability Management
Education
N/A
Related jobs
-
Chief Information Security Officer EUR 74K-90KAccess Control | Audit Readiness | Compliance Management | Continuous Monitoring | CybersecurityExecutive-level Full TimeFinland3d ago
-
AI Governance | AI Risk | AI Risk Assessment | AI compliance | AWSCollaborative culture | Dental insurance | Global flexibility | Health insurance | Home office stipendMid-level Full TimeFinland R8d ago
-
Chief Information Security Officer EUR 102K-115KBy Design | ISMS | ISO 27001 | Incident Response | Indicators of AttackFlexible work environment | Hybrid working | Remote work up to 2 days per weekExecutive-level Full TimeHelsinki, Finland17d ago
-
Tietoturva-asiantuntija, GRC EUR 36K-36KAuditing | GRC tools | ISO 27001 | Information security | Risk ManagementComprehensive training | Flexible working hours | Health and wellness services | International work environment | Modern toolsMid-level Full TimeHelsinki, Finland1mo ago