Governance, Risk and Assurance Analyst

Arbetsbeskrivning

We are now looking for a passionate GRA Analyst to maintain and mature our layers of defense as we are redoubling our efforts in Information Security.

We have two roles available, one in Madrid and another one in Malmö, with a local focus and then branching into a global role. You will be part of a talented team and have the opportunity to develop and learn from Information Security industry leaders.

You will be responsible for coordinating and performing security assessment functions and control testing reporting and activities in accordance with Verisure Internal Controls compliance, regulatory and departmental policy and procedures. The GRA analyst works with internal stakeholders, external audit firms, and regulatory agencies to provide supportive documentation as applicable and takes a lead role in ensuring the security of all protected information collected, used, maintained, or released by Verisure. As a GRA analyst you will also have an important role in researching, developing, and analyzing technologies, processes and assessments of known insider threats patterns or risks within our organization to implement remediation actions.

Responsibilities include:
* Provide consideration, and guidance on regulatory matters and mitigate against uncertainty.
* Ensure adherence to defined standards for Verisure to maintain legal and regulatory compliance.
* Implement both independent testing of controls, and a comprehensive risk assessment process to improve the organization´s risk posture and determine safeguards to reduce an incident’s probability of occurrence and impact.
* Design and implement a program to collect and report information security related performance metrics and key risk indicators to evaluate overall current security maturity at a glance for executive review and decision-making
* Develop a method for exception management to a compliance standard(s), including remediation/review cycles, sign-off requirements, and reporting.
* Analyze and respond to information security incidents, including investigation of countermeasures to, and recovery from them (data breaches, analysis behavior ex-post...).
* Provide forensic analysis support to other internal teams in relation to incidents and investigations and perform analytics work on root cause analysis to identify patterns and trends
* Initiate, establish, and maintain effective working relationships inside and outside the immediate team to facilitate information gathering or support joint investigative efforts.

What you bring

You have a passion for assessing and configuring Information Security products in compliance environments and a determination to understand risk implications hidden in IT and business complexities. You will escalate critical issues with clarity and work to get the right data, at the right time to enable high quality decisions to be made.  This will require both expertise and a passion for ensuring the optimal performance of Information Security technologies providing critical business protection.

Qualifications:
* Experience to move seamlessly from strategy to execution and deliver tangible results.
* Experience defining, analyzing and tracking processes, risks, systems, and/or data.
* Familiarity with compliance frameworks and regulatory requirements.
* Demonstrated proficiency in project management and process improvement.
* Ability to build professional relationships and collaborate effectively with peers and stakeholders .
* Understanding of Insider Threat activity, modeling, and knowledge of attackers and a keen ability to identify trends and patterns in data to be able to carry out behavior analysis
* Effective verbal and written communication skills and be comfortable presenting to different levels within and outside of the organization.
* Fluent business English.

Everything we do is driven by our DNA.  Our DNA has enabled us to grow at a double-digit pace for many years and is setting us up to continue this journey.
* Passionate in Everything We Do: Our people have a sense of energy that is unmistakable, one that drives us to delight our customers and focus on creating impact quickly.
* Committed to Making a Difference: When we say we will do something; we deliver with excellence. We are accountable, focused and operate with discipline.
* Always Innovating: We believe that Innovation can be big or small; it’s a continuous state of mind that inspires us to think differently and always make things better. We are risk takers and we learn continuously.
* Winning as a Team: Our people know that by leveraging one another’s strengths, investing in and developing our team’s capability and by collaborating well, we will win.
* With Trust & Responsibility: Operating with integrity is core to our success. We are humble, honest and value deep mastery and expertise. We do the right thing, always.

Keywords: Risk Management, KPI, Insider Threat, Forensic Investigations, Business Process & Fraud, Information Security, Cyber Security,

Sammanfattning

  • Arbetsplats: Verisure Sàrl
  • 1 plats
  • Tills vidare
  • Heltid
  • Fast månads- vecko- eller timlön
  • Publicerat: 14 januari 2022
  • Ansök senast: 13 februari 2022

Liknande jobb


18 december 2024

Dataskyddssamordnare till Nacka Energi

11 maj 2023

11 maj 2023