IT Security Expert

Edenred is a pioneer, a tech leader and the everyday companion for people at work across the world.
Our 12,000 employees are committed to making the world of work a better place for all, one that is safer, more efficient and more user-friendly. At Edenred, our passion for customers, respect, imagination, simplicity and entrepreneurial spirit are our values. For anyone who needs to vibe in their professional life, we are the best place for you to work and grow.
The Edenred Digital Center (EDC) in Bucharest, Romania is Edenred Group's largest Digital hub for strategic #tech projects.

The successful candidate will be an information security professional passionate by functional and technical subjects and with a proven and successful experience in implementing information security policies and procedures, in conjunction with IT and business leaders.

He/she will be result and performance oriented with a can-do attitude and be able to persuade/influence others in the organization. The ability to engage various stakeholders with passion and conviction to persuade others that security is paramount and not just an option.

An experience is expected in at least four of the following domains: IT security governance, Operations security, Application security, IT security projects, Access management, IT compliance, IT resilience.

An extensive knowledge of Security and Risk Frameworks as well as software development best practices will be appreciated.

3 to 5 years’ experience in a similar function
Education: Master’s degree in Information Technologies or similar, a specialisation in IT Security will be a plus.

Proficiency in the use or knowledge of:

IT risk analysis methodologies, threat modelling or analysis
IT security design, architecture, standards and best practices
Web applications security and secure coding
Definition, implementation, and follow-up of security measures & remediation plan

The ideal candidate is demonstrating:

Strong communication skills: he/she adapts own approach to the audience, anticipating issues, preparing for possible resistance to proposed solutions and responding in an appropriate style to reach a mutual agreement.
Robust technical skills: he/she can address technical topics with the IT specialists (architecture, infrastructure, developer, …) as deeper as needed to achieve the objectives and solve difficulties.
Agility and team spirit: he/she accepts input from a wide range of perspectives (business, legal, HR, IT, etc.) in a local and international context. Works closely with various stakeholders and is available for them to reach common objectives.
Proactive: he/she takes initiative and proactively engages with the local team
Professional IT Security certification is a plus: ISO 27005 Risk Manager, ISO 27001 Information Security Management System Implementor, CEH Certified Ethical Hacker, etc.
Languages required: Fluent in English, both spoken & written.

The IT Security Expert will be responsible for IT Security and IT Resilience in the Belgium BU. He will be a centerpiece in the country to improve the IT Security and Resilience according to our roadmap and strategy: identify, protect & comply, detect, respond, recover and train.

This position is an opportunity for he/she to exercise a wide range of activities with the responsibility of the IT Security in the BU scope and to work with many experimented and involved business and IT stakeholders.

Under the supervision of the Regional IT Security Leader, he/she will be in charge of IT

Security:
In projects:

identify with business the IT security and continuity needs
realize IT risk analysis
perform third-party assessments and validate IT Security clauses in contracts
identify security measures and follow their implementation or deployment
perform or organize security tests (e.g. pentest) and reach compliant results

Compliance:

support the strategy and roadmap implementation in the BU
control quality of IT Security & Resilience actions and deliverables
collect and ensure continuous follow-up and improvement of Security KPIs
reach and maintain the compliance with the defined targets for the Security KPIs
comply with standards and regulations needed for the business (GDPR, ISO…)

Support:

define, implement and maintain the IT Security procedures in the BU
handle IT security alerts, tickets and incidents with the Security Operation Center
follow and manage vulnerabilities remediation
answer to questions about cybersecurity (including customer assessment)
advise, follow and help on internal or third-party audit recommendations

Awareness:

animate the local cybersecurity awareness (on-boarding awareness, etc.)
promote cybersecurity in the BU, be the security point of contact
IAM: deploy IAM process and tools from infrastructure level to application/user level

Resilience: support the BU teams in BIA definition and IT DRP implementation & exercises.

Joining us means:

Taking part in an ambitious corporate project
Becoming part of a team that embraced the digitalization challenge and enjoys this transformation every day
Living our values every day: passions for customers, respect, imagination, simplicity, entrepreneurial spirit.

Because:

You will greatly contribute to build the project that will improve the customers’ experience on an international level
You will get exposure to various global cultures and teams
You will be working with the newest technologies to build a new platform from scratch
We offer you a very pleasant working environment,
We also have for you: meal tickets, holiday vouchers, health subscription, flexible hours, work from home, flexible benefits system, on-the-job training & e-learning platforms.

And we do not stop here!