Security Compliance Analyst

📢 Our mission? Ivy Partners is a Swiss consulting firm contributing to the development of companies in their strategic, technological, and organizational challenges.

Our goal today is to offer our employees a career that will positively contribute to their fulfillment and well-being, by enhancing their skills and offering real prospects for development.

👩‍💻🧑‍💻 As a Security Compliance Analyst at Ivy Partners, your missions will be:

• Regulatory Monitoring: Stay updated on any changes or updates to NIS2 regulations and their impact on the organization’s cybersecurity policies and practices.
• Identify operational deliverables required to comply with the NIS2 regulation: launch projects, update policies, etc.
• Compliance Oversight: Ensure that the organization meets the requirements set forth by the NIS2 Directive, including risk management, security measures, and governance.
• Implement governance with key indicators alongside CDIO & CISO.
• Documentation & Reporting: Prepare reports, internal documentation, and evidence to demonstrate NIS2 compliance to internal stakeholders, auditors, and regulatory bodies.
• Incident Response & Management: Collaborate with the Incident Response Team to ensure timely reporting and handling of incidents according to NIS2 guidelines.
• Policy Development & Implementation: Identify and contribute to the development and enforcement of internal policies and procedures designed to achieve NIS2 compliance.
• Training & Awareness: Assist in the development and delivery of compliance training and awareness programs for employees to ensure correct understanding of NIS2-related security protocols.

About you!

• Bachelor's degree in Cybersecurity, Information Technology, Computer Science, or a related field (or equivalent experience).
• Strong understanding of NIS2 regulations, EU cybersecurity laws, and related compliance frameworks (ISO 27001, NIST, etc.).
• Proven experience in compliance, risk management, or IT security roles.
• Experience conducting risk assessments and audits with a focus on regulatory frameworks.
• Familiarity with security tools, vulnerability management, and incident response processes.
• Excellent written and verbal communication skills, with the ability to document and present complex information clearly.
• Analytical mindset with the ability to identify problems and implement effective solutions.
• Certifications such as CISM, CISA, CISSP, or similar are preferred.
• Advanced skills in NIS2, Cybersecurity, and Risk Analysis; Advanced knowledge of Regulatory Compliance and ISO 27001; Basic understanding of GDPR.

🤝 IVY, it’s also about:

Kindness | We care for our employees by guaranteeing a supportive environment where each individual is valued and offered training and development prospects both in Switzerland and internationally.

Trust | Working with us means developing a partnership founded on trust, professionalism, and transparency at all times.

Innovation | We ensure an effective digital transformation through technological innovation coupled with creativity.

Responsibility | The collective is at the core of everything we do, and we take this responsibility seriously by striving to have a positive impact.