Information Security Officer

Support our organization in enhancing resilience against information and cyber risks. Focus on aligning with key regulatory frameworks (e.g., DORA, GDPR, MIFID) and improving processes, tools, and demonstrability.

Key Responsibilities:

Tactical Responsibilities:

• Vulnerability and Patch Management: Collaborate with DevOps teams to ensure timely remediation.
• Business Impact Analysis (BIA): Validate and improve BIAs and associated processes, ensuring integration with BPM activities.
• Policy and Compliance Alignment: Review and enhance policies from an infosec perspective, including AI risk assessments.
• Security Assessments: Conduct reviews for new business applications and initiatives to embed security measures.
• Stakeholder Collaboration: Partner with IT and business units to align security requirements and processes.
• Continuous Improvement: Drive enhancements in information classification, training, and process quality.

Operational Responsibilities:

• Application Security Reviews: Assess new and existing business applications for confidentiality, integrity, and availability (CIA).
• Risk and Vulnerability Management: Identify, mitigate, and track risk items, including policy exceptions and remediation plans.
• Vendor and Solution Review: Contribute to RFI/RFP processes to ensure infosec requirements are integrated.

Qualifications and Experience:

• A Bachelor's or Master’s degree in a relevant field.
• At least 4 years of experience in information security, with knowledge of regulations like DORA, GDPR, NIS2, and MIFID.
• Certifications such as CISSP, CISM, or CRISC are preferred.
• Familiarity with Agile methodologies (e.g., SAFe).

Additional Details:

• Hybrid working model
• 6 month Initial Contract
• 36-40 hours per week

Any questions please reach out directly!

Email: [email protected]