Job Summary
This role involves developing and maintaining robust security policies, procedures, and standards in line with leading frameworks. The ideal candidate will conduct regular internal audits and assessments to ensure compliance with security standards and regulatory requirements.
Responsibilities
* Develop, implement, and maintain security policies, procedures, and standards in alignment with ISO27001, SOC2, and other relevant frameworks.
* Conduct regular internal audits and assessments to ensure compliance with security standards and regulatory requirements.
* Coordinate external audits and certification processes.
* Assist with customer audits and address any security concerns or queries.
* Identify, assess, and manage security risks, providing recommendations for mitigation.
* Maintain documentation related to security policies, procedures, and compliance activities.
* Collaborate with various departments to ensure security and compliance requirements are met.
* Stay current with changes in security regulations and industry standards, particularly those relevant to the financial services industry (DORA, NIS2).
Requirements
* Bachelor's/Master's degree in Information Security, Computer Science, or a related field.
* 3-5 years of experience in a GRC role with a focus on ISO27001, SOC2, and other relevant standards.
* Strong understanding of risk management principles and practices.
* Experience with security audits, compliance assessments, and certification processes.
* Excellent analytical, organizational, and communication skills.
* Ability to work independently and collaboratively in a team environment.
* Detail-oriented with a strong commitment to maintaining high standards and work ethic.
* Fluent spoken and written English.
Additional Qualifications
* Relevant certifications such as ISO27001 Lead Auditor/Implementer, CISA, ITIL, etc.
* Proficiency in Spanish, French, or German, both written and spoken.
About the Role
This is an exciting opportunity to join a dynamic team dedicated to making technology a safer place. As a hybrid or remote job, you will have the flexibility to work from anywhere. Our team values collaboration, innovation, and continuous learning. We offer attractive packages based on skills and experience and provide personalized support to accelerate your professional growth. We are passionate about fighting online fraud and changing the status quo. If you share our vision and values, we encourage you to apply.