Security Governance Specialist Information Security Team 100 remote-friendly within Spain
Security Governance Specialist Information Security Team 100 remote-friendly within Spain
Employer Active
Job Alert
You will be updated with latest job alerts via email
Share
Job Alert
You will be updated with latest job alerts via email
Job Description
The Security Governance Specialist is an essential member of the Information Security Governance Risk and Compliance team responsible for supporting and maintaining Docplanners information security framework. This role is pivotal in ensuring that security efforts align with business objectives and comply with relevant regulations and industry standards.
Key Responsibilities
Policy and Procedure Development
Develop and maintain information security policies procedures and standards in alignment with industry best practices regulatory requirements and organisational goals.
Assess the policy framework in support of continuous improvement and suggest positive changes where appropriate.
Security Governance Framework
Monitor the performance of the security governance framework.
Define and report on suitable and meaningful metrics.
Compliance Management
Assist in identifying and understanding regulatory requirements and standards relevant to the organisation.
Liaise with local entities and subject matter experts to assist with compliance requirements from customers investors or legislators.
Assist in the planning and execution of internal and external audits
Security Awareness
Contribute to the development of security awareness programs and training materials.
Collaborate with the Security Awareness and Training Specialist to educate employees about security policies and best practices.
Documentation and Reporting
Maintain the repository of security policies procedures and standards.
Prepare and distribute reports on compliance status governance efforts and security metrics to management.
Security Risk Management
Assist in the identification assessment and reporting of risks across the organisation.
Monitor the compliance of risk management activities
Liaise with the Head of Risk and Compliance and other key stakeholders
Continuous Improvement
Stay informed about emerging security threats regulations and best practices.
Propose and implement improvements to the security governance framework based on industry trends and organisational needs.
Qualifications :
ISO 27001 Lead Auditor or Implementor certification is desirable but not essential
Experience taking part in internal and or external audits
13 years of experience in information security governance
Significant risk management experience
Knowledge of relevant security standards and frameworks (e.g. ISO 27001 SOC 2).
Experience of Security Governance tooling
Understanding of regulatory requirements such as GDPR
Excellent communication and collaboration skills with the ability to work across various departments.
Strong analytical and problemsolving skills.
Detailoriented with a commitment to maintaining accuracy in documentation.
Ability to adapt to a dynamic and fastpaced environment.
Selfstarter and free thinker
Additional Information :
Lets talk money
- A salary adequate to your experience and skills between 53000 and 70000 euros. The range is broad so that we can accommodate our roles for all levels of experience but we will show you the career ladder to explain where we see your skills and impact within the company. Your salary will be now and always 100% transparent to you;
- Flexible remuneration and benefits system via Flexoh which includes: restaurant card transportation card kindergarten and training tax savings;
- Share options plan after 6 months of working with us.
True flexibility and worklife balance
- Remote or hybrid work model with our hub in Barcelona;
- Flexible working hours (fully flexible as in most cases you only have to be on a couple of meetings weekly);
- Summer intensive schedule during July and August (work 7 hours finish earlier);
- 23 paid holidays with exchangeable local bank holidays;
- Additional paid holiday on your birthday or work anniversary (you choose what you want to celebrate).
Health comes first
- Private healthcare plan with Adeslas for you and subsidized for your family (medical and dental);
- Access to hundreds of gyms for a symbolic fee in partnership for you and your family with Andjoy;
- Access to iFeel a technological platform for mental wellness offering online psychological support and counseling.
Keep growing with us
- 20% time rule: spend 20% of your working hours on personal development related to your role and collaboration with other teams;;
- Free English and Spanish classes.
We promote and embrace equal opportunities in our hiring process and also every day at work. When you apply for our roles you receive equal treatment regardless of age disabilities gender reassignment marital or civil partner status pregnancy or parental status race colour nationality ethnic or national origin religion or belief sex sexual orientation or any other dimension of human difference. If you require additional support in your recruitment process we kindly encourage you to let us know. Behind those words youre reading theres a person (hi!) who already helped a candidate by adapting the interviews and now were lucky to have this person with us. So even if youve never asked for it before may this serve as a sign that now you can do so. We can only truly be equal if we adapt to each other.
We believe all humans in all their beautiful diversity should have equal rights dignity and respect. Period. Mariusz Gralewski CEO
Remote Work :
Yes
Employment Type :
Fulltime
Employment Type
Remote
