IT Security Expert

Employer: Edenred Digital Center
Domain:
  • IT Software
  • Job type: full-time
    Job level: 1 - 5 years of experience
    Location:
  • BUCHAREST
  • Updated at: 02.10.2022
    Short company description

    Edenred is a pioneer, a tech leader and the everyday companion for people at work across more than 46 countries.
    Our 10,000 employees are committed to making the world of work a better place for all, one that is safer, more efficient and more user-friendly. At Edenred, our passion for customers, respect, imagination, simplicity and entrepreneurial spirit are our values. For anyone who needs to vibe in their professional life, we are the best place for you to work and grow.
    The Edenred Digital Center (EDC) in Bucharest, Romania is Edenred Group's largest Digital hub for strategic Tech projects.

    Requirements

    The successful candidate will be an information security professional passionate by functional and technical subjects and with a proven and successful experience in implementing information security policies and procedures, in conjunction with IT and business leaders.

    He/she will be result and performance oriented with a can-do attitude and be able to persuade/influence others in the organization. The ability to engage various stakeholders with passion and conviction to persuade others that security is paramount and not just an option.

    An experience is expected in at least four of the following domains: IT security governance, Operations security, Application security, IT security projects, Access management, IT compliance, IT resilience.

    An extensive knowledge of Security and Risk Frameworks as well as software development best practices will be appreciated.

    3 to 5 years’ experience in a similar function
    Education: Master’s degree in Information Technologies or similar, a specialisation in IT Security will be a plus.

    Proficiency in the use or knowledge of:

    IT risk analysis methodologies, threat modelling or analysis
    IT security design, architecture, standards and best practices
    Web applications security and secure coding
    Definition, implementation, and follow-up of security measures & remediation plan

    The ideal candidate is demonstrating:

    Strong communication skills: he/she adapts own approach to the audience, anticipating issues, preparing for possible resistance to proposed solutions and responding in an appropriate style to reach a mutual agreement.
    Robust technical skills: he/she can address technical topics with the IT specialists (architecture, infrastructure, developer, …) as deeper as needed to achieve the objectives and solve difficulties.
    Agility and team spirit: he/she accepts input from a wide range of perspectives (business, legal, HR, IT, etc.) in a local and international context. Works closely with various stakeholders and is available for them to reach common objectives.
    Proactive: he/she takes initiative and proactively engages with the local team
    Professional IT Security certification is a plus: ISO 27005 Risk Manager, ISO 27001 Information Security Management System Implementor, CEH Certified Ethical Hacker, etc.
    Languages required: Fluent in English, both spoken & written.

    Responsibilities

    The IT Security Expert will be responsible for IT Security and IT Resilience in the Belgium BU. He will be a centerpiece in the country to improve the IT Security and Resilience according to our roadmap and strategy: identify, protect & comply, detect, respond, recover and train.

    This position is an opportunity for he/she to exercise a wide range of activities with the responsibility of the IT Security in the BU scope and to work with many experimented and involved business and IT stakeholders.

    Under the supervision of the Regional IT Security Leader, he/she will be in charge of IT

    Security:
    In projects:

    identify with business the IT security and continuity needs
    realize IT risk analysis
    perform third-party assessments and validate IT Security clauses in contracts
    identify security measures and follow their implementation or deployment
    perform or organize security tests (e.g. pentest) and reach compliant results

    Compliance:

    support the strategy and roadmap implementation in the BU
    control quality of IT Security & Resilience actions and deliverables
    collect and ensure continuous follow-up and improvement of Security KPIs
    reach and maintain the compliance with the defined targets for the Security KPIs
    comply with standards and regulations needed for the business (GDPR, ISO…)

    Support:

    define, implement and maintain the IT Security procedures in the BU
    handle IT security alerts, tickets and incidents with the Security Operation Center
    follow and manage vulnerabilities remediation
    answer to questions about cybersecurity (including customer assessment)
    advise, follow and help on internal or third-party audit recommendations

    Awareness:

    animate the local cybersecurity awareness (on-boarding awareness, etc.)
    promote cybersecurity in the BU, be the security point of contact
    IAM: deploy IAM process and tools from infrastructure level to application/user level

    Resilience: support the BU teams in BIA definition and IT DRP implementation & exercises.

    Other info

    Joining us means:

    Taking part in an ambitious corporate project
    Becoming part of a team that embraced the digitalization challenge and enjoys this transformation every day
    Living our values every day: passions for customers, respect, imagination, simplicity, entrepreneurial spirit.

    Because:

    You will greatly contribute to build the project that will improve the customers’ experience on an international level
    You will get exposure to various global cultures and teams
    You will be working with the newest technologies to build a new platform from scratch
    We offer you a very pleasant working environment,
    We also have for you: meal tickets, holiday vouchers, health subscription, flexible hours, work from home, flexible benefits system, on-the-job training & e-learning platforms.

    And we do not stop here!

    RO: Acest job este deschis si candidatilor din Ucraina;
    EN: This job is open to candidates from Ukraine;