ISO27001 – Who Needs Engineers
https://whoneedsengineers.com/wne_live
Software Engineering RecruitmentSun, 13 Oct 2024 21:05:02 +0000en-US
hourly
1 https://wordpress.org/?v=6.6.2https://whoneedsengineers.com/wne_live/wp-content/uploads/2023/06/cropped-wne_logo-3-32x32.pngISO27001 – Who Needs Engineers
https://whoneedsengineers.com/wne_live
3232IT Security Manager
https://whoneedsengineers.com/jobs/cybersecurity/it-security-manager-6/
Sun, 13 Oct 2024 21:05:02 +0000https://whoneedsengineers.com/wne_live/jobs/jobs-categories/it-security-manager-6/IT Security Manager
Job Description:
As an IT Security Manager, you will play a crucial role in safeguarding the information assets of our organization. Your expertise will contribute to the development and implementation of robust security strategies that align with international standards. You'll be tasked with advising various departments on best practices in information security, conducting comprehensive risk and vulnerability assessments, and deriving actionable recommendations to mitigate potential threats. Additionally, you will be responsible for the design and documentation of security concepts, group-wide directives, and guidelines. You will also engage in auditing and training measures to enhance the security awareness across the organization. Your role will include supporting incident management and ensuring timely reporting of security incidents to maintain compliance and protect our assets.
IT Languages:
English
German
You will be involved in a variety of tasks that ensure the integrity and security of our IT infrastructure.:
Advising Group entities on information security matters;; Conducting risk assessments and vulnerability analyses;; Developing and documenting security concepts and guidelines;; Implementing training measures to enhance security awareness;; Supporting incident management and reporting processes
Spoken Languages:
English;; German
Skillset:
IT security
GDPR compliance
ISO27001
ITIL
Information security management systems
Process modeling
Soft Skills:
Strong communication skills
Independence
Structured working style
Problem-solving skills
Qualifications:
Completed training in IT or a related university degree
Experience in a similar role for at least five years
Understanding of IT security standards and regulations
Years of Experience:
5
Location:
Germany
Job Benefits:
Dynamic and inclusive work culture
Professional growth opportunities
Tailored training programs
Competitive salary
Comprehensive benefits package
Hybrid work model
30 days annual leave
Working Conditions:
Full Time
Employment Type:
Permanent Contract
Company Culture:
We foster a dynamic and supportive work environment that values innovation and encourages personal and professional growth. Our culture is inclusive and collaborative, ensuring that every employee feels respected and valued for their contributions.
Opportunities For Advancement:
Professional development through training, Leadership opportunities within the organization
We are seeking a Senior Manager specializing in Governance, Risk, and Compliance (GRC) with extensive experience in advisory roles. This position requires a strong ability to serve as a trusted advisor while also contributing to sales success through your consultancy expertise. Your role will focus on advising and implementing security solutions for critical infrastructures, compliance with ISO27001 standards, cloud security, Security Information and Event Management (SIEM), and network security. You will be responsible for scaling the existing team and fostering the growth of emerging talent within the organization. In addition, you will support the sales team in developing client solutions and identifying new business opportunities through your advisory expertise. Building and maintaining long-term relationships with clients will be key, as you will act as a reliable consultant on GRC matters. As a leader, you will guide a highly skilled team with an empathetic approach, prioritizing the development and support of team members.
IT Languages:
German
English
As a Senior Manager, you will have a diverse range of responsibilities that include providing expert advice on security solutions, managing and developing your team, and contributing to the overall growth of the organization.:
Consulting and implementing security solutions for critical infrastructures.;; Leading the growth and development of the current team.;; Supporting the sales team in crafting solutions for clients.;; Establishing and maintaining long-term client relationships.;; Leading a high-performing team with an emphasis on employee development and support.
Spoken Languages:
English;; German
Skillset:
GRC
Cyber Security
ISO27001
Cloud Security
SIEM
Network Security
Soft Skills:
Empathy
Leadership
Communication
Team Management
Adaptability
Qualifications:
Several years of professional experience in consulting with a focus on GRC and Cyber Security.
In-depth knowledge in at least two of the following areas: Critical Infrastructures, ISO27001, Cloud Security, SIEM, Network Security.
Proven experience in consulting with a demonstrated ability to contribute to sales success.
Years of Experience:
5
Location:
Germany
Job Benefits:
Attractive base salary of 70000 to 120000 EUR.
Performance-based bonuses tied to team success.
Flexible working models allowing remote work.
Career growth opportunities with team leadership roles.
Working Conditions:
Full Time
Employment Type:
Permanent Contract
Company Culture:
The work culture emphasizes empathy, collaboration, and continuous professional development. The organization values the growth of its employees and encourages a supportive environment where team members can thrive.
Opportunities For Advancement:
Leadership roles within the team., Enhanced responsibilities in strategic decision-making., Opportunities for personal and professional growth.
As an Information Security Analyst, you will be instrumental in safeguarding our information systems by conducting thorough assessments of security controls. Your role will involve evaluating the effectiveness of security measures, ensuring compliance with established frameworks, and identifying vulnerabilities in applications and databases. You'll work within the NIST 800-53 security framework to assess new systems and document their security posture to facilitate the Authority to Operate (ATO) process. Additionally, you will play a key role in ongoing audits and monitoring, ensuring that security controls remain effective over time. This position offers an excellent opportunity to deepen your understanding of security compliance while collaborating with various stakeholders to align with security standards and best practices.
IT Languages:
Python
PowerShell
The responsibilities of the Information Security Analyst include a variety of critical tasks that contribute to the overall security posture of the organization. You will conduct security control tests to assess both design and operational effectiveness, ensuring that vulnerabilities are identified and remediated efficiently.:
Manage remediation tasks and ensure timely completion;; Lead analysis of internal and third-party vulnerability scans;; Conduct cyber security risk assessments and serve as a liaison for the security team;; Assist in incident response processes with IT teams;; Create security operation controls, playbooks, and procedures;; Stay updated on current trends and emerging threats in cybersecurity
Spoken Languages:
English
Skillset:
NIST SP 800-53
CIS Critical Security Controls
OWASP
MITRE ATT&CK
ISO27001
Network security
Incident response
Soft Skills:
Analytical thinking
Attention to detail
Problem-solving
Communication skills
Team collaboration
Qualifications:
Bachelor’s degree in a related field
Professional security certifications (CySA+, Security+, CISSP, CCSP, CISM, CISA, AWS Certified Security Specialty) or willingness to obtain certification
Working knowledge of AWS Security tools
Strong understanding of cloud security concepts
Familiarity with information security operational concepts
Years of Experience:
10
Location:
United States
Job Benefits:
Competitive base salary
Flexible working hours
Remote work options
401K with matching contributions
Parental leave
Medical, dental, and vision insurance
Flex Spending Account
Company-provided short-term disability
Company-provided life insurance
Commuter benefits
Generous paid time off
Eleven paid holidays
Professional development opportunities
New business referral bonus
Working Conditions:
Full Time
Employment Type:
Permanent Contract
Company Culture:
We prioritize diversity, equity, and inclusion in our workplace, fostering an environment that values individual contributions and promotes professional growth.
Opportunities For Advancement:
Professional development, Career growth opportunities, Involvement in special projects
Visa Sponsorship:
Not Available
]]>Head of Security and Tech Compliance
https://whoneedsengineers.com/jobs/cybersecurity/head-of-security-and-tech-compliance/
Sat, 21 Sep 2024 12:15:02 +0000https://whoneedsengineers.com/wne_live/jobs/jobs-categories/head-of-security-and-tech-compliance/Head of Security and Tech Compliance
Job Description:
Join a dynamic and innovative tech company that is at the forefront of revolutionizing online payments. As the Head of Security and Tech Compliance, you will be pivotal in safeguarding our operations and ensuring adherence to essential security and compliance standards. You will lead a newly established team dedicated to cybersecurity and information security, driving initiatives that will protect our digital assets while enhancing our technical capabilities. Collaborating closely with the management team and stakeholders across various departments, you will develop and execute a robust security strategy that aligns with our organizational objectives and risk appetite. This role is not just about compliance; it is about fostering a security-first culture within the organization, ensuring that every member understands their role in maintaining our high standards of operational resilience.
IT Languages:
Python
Java
C++
As the Head of Security and Tech Compliance, you will be responsible for a wide range of tasks aimed at enhancing our security posture and ensuring compliance with industry standards.:
Define and implement a comprehensive security strategy tailored to our risk profile.;; Act as the primary external contact for operational security concerns.;; Oversee digital operational resilience testing to ensure our systems are robust.;; Maintain and manage our Information Security Management System (ISMS) and ensure all security certifications are up to date.;; Conduct vendor due diligence and perform ongoing monitoring of third-party services.;; Develop and deliver security training and awareness programs to cultivate a security-oriented culture within the company.
Spoken Languages:
English;; Swedish;; German
Skillset:
Cybersecurity
Information Security
Risk Management
Compliance Standards
ISO27001
DORA
EBA
Soft Skills:
Excellent communication skills
Strong leadership abilities
Problem-solving mindset
Adaptability
Qualifications:
Proven leadership experience in cybersecurity or information security roles.
Strong background in developing and managing security teams.
Comprehensive understanding of operational security principles.
Years of Experience:
7
Location:
Europe
Job Benefits:
Competitive salary package
Flexible working hours
Health and wellness programs
Professional development opportunities
Collaborative work environment
Working Conditions:
Full Time
Employment Type:
Permanent Contract
Company Culture:
We foster a culture of innovation, collaboration, and continuous improvement. Our team members are encouraged to share their ideas and insights, contributing to a vibrant workplace where everyone plays a crucial role in our success.
Opportunities For Advancement:
Leadership training programs, Mentorship opportunities, Pathways to senior management roles