Information Security Analyst (GRC/ISO27001) en Pozuelo de Alarcón

Inscríbete a nuestras ofertas y desarrolla tu carrera profesional con nosotros!

We believe that we make a difference every day. To do that, we need committed and engaged employees. Our people are accountable for delivering world-class service and they are passionate about making the world a safer and more secure place. Our teams operate with integrity and respect for one another fueled by an entrepreneurial spirit. We are building a high performance organization through investing in our people with great development and growth opportunities.

Do you want to have an impact every day by making people safe - and bringing them peace of mind? Interested in being part of a dedicated, passionate team which believes that security is a human right? Looking to join a company where innovation and technology are at the heart of its solutions?

At Verisure Securitas Direct, we are again redoubling our efforts in Information Security and have ambitious plans over the short and long term. To help support this several passionate Information Security Analysts are needed to help mature and maintain our ISO27001 and GRC initiatives.

The roles are based either in Malmo supporting our Northern platform spread across Scandinavia, Holland and Belgium, or in Madrid supporting our Southern Platform spread across Iberia, Italy, France, the UK and South America. You will work within a talented global team and have the opportunity to develop and learn from Information Security industry leaders.

You will be responsible for day to day running of our ISO27001 programme and compliance needs, undertaking a variety of activities across all Information Security domains. For example, you will need to attend a variety of security forums and stakeholder boards that will identify and determine Risk Treatments to mitigate threats or vulnerabilities and you will be expected to actively work with Business Units and Asset owners.

To be successful, you will need an analytical and organised mindset with the ability to anticipate risk, creatively resolve bottlenecks and work within a wider Global team. You will escalate critical issues with clarity and work with the right stake holders to get the right data, at the right time to enable high quality decisions to be made.  This will require excellent all round knowledge across all Information Security Domains aligned with business sensitivity and a pragmatic approach.

In these roles, you will work with experts from all aspects of our exciting Security business and third parties, far beyond a role just dealing with corporate systems.

The roles will be based in Malmö, Sweden or Madrid, Spain with the need for predominantly European travel (20%).

Main Responsabilities

• Maintain and develop existing Information Security policies, standards, procedures and guidelines within the organisation’s Information Security policy framework.
• Risk Assessments of new and existing systems and projects.
• Proactively ensure that we manage any Security Threats or Exposure to the Company
• Support for the ISMS/ISO27001 programme.
• Support for compliance programmes such as GDPR and PCI DSS
• Effective global team collaboration.
• Manage and contribute to Information Security improvement projects and initiatives.
• Track and Register Risks and Assets
• Participate in compliance checks and audits
• Contribute to Business Continuity Planning
• Work with our suppliers to ensure compliance

Minimun qualifications

• A pragmatic approach to information security developed through hard won experience of at least 5 years.
• Experience in large scale and critical environments
• Experience working within an ISMS /ISO27001.
• Expertise across most Information Security domains.
• Expertise with information risk management frameworks (ISO27005, NIST), information risk assessments, risk register maintenance and articulating information risks using business friendly language.
• Experience in defining Information Security requirements for new projects and initiatives, and helping project teams embed security into business processes, IT solutions and systems.
• Experience in developing security policies, standards and procedures.
• Fluent business English & Spanish

 Preferred qualifications

• Relevant security certification (e.g. CISSP, CISA, CISM, CRISC, MSc in Information Security).
• Strong knowledge of Data Privacy (EU GDPR)
• Familiar with current home security / smart home technologies, future developments and understanding of business models behind them.
• IoT knowledge.

Are you a match with our Company’s DNA? We are looking for someone with a "can do" attitude and with proven ability to deliver and achieve results in fast paced & dynamic environments.

Passionate in Everything We Do: Our people have a sense of energy that is unmistakable, one that drives us to satisfy our customers and focus on creating impact quickly

Committed to Making a Difference: When we say we will do something, we deliver with excellence. We are accountable, focused and operate with discipline

Always Innovating: We believe that Innovation can be big or small; it’s a continuous state of mind that inspires us to think differently and always make things better. We are risk takers and we learn continuously.

Winning as a Team: Our people know that by leveraging one another’s strengths, investing in and developing our team’s capability and by collaborating well, we will win.

With Trust & Responsibility: Operating with integrity is core to our success. We are humble, honest and value deep mastery and expertise. We do the right thing, always.

Our people take care of people, we connect caring, knowledgeable and decisive experts with innovative technology to protect what matters most