Information Security Manager

Information Security Manager

Arbetsbeskrivning

The role
Billhop empowers businesses to manage their working capital and manage liquidity gaps by enabling them to pay any invoice by credit card. We are in an expansive phase with an ambition to grow even faster, and are now looking for an Information Security Manager (ISM) to join our team in Stockholm. We are a technology company on a mission to continuously develop great products and we are active in the exciting intersection of card payments, banking infrastructure and customer facing interfaces.
The Information Security Manager (ISM) is responsible for developing and maintaining a corporate wide information security management program to ensure that information assets are adequately protected. This position is responsible for identifying, evaluating and reporting on information security risks in a manner that meets compliance and regulatory requirements, and aligns with and supports the risk posture of the company.


Responsibilities
The ISM position requires a visionary leader with sound knowledge of business management and a working knowledge of information security technologies. The ISM will proactively work with business units to implement practices that meet defined policies and standards for information security. He or she will also oversee a variety of IT-related risk management activities.
The ISM serves as the process owner of all assurance activities related to the availability, integrity and confidentiality of customer, business partner, employee and business information in compliance with the organisation's information security policies.
A key element of the ISM's role is working with executive management to determine acceptable levels of risk for the organization. The ISM must be highly knowledgeable about the business environment and ensure that information systems are maintained in a fully functional, secure mode.
The ISM's job is composed of a variety of activities, including very tactical, operational and strategic activities in support of the ISM's program initiatives, such as:
Strategic support - Develop, maintain and monitor a strategic, comprehensive enterprise information security and IT risk management program to ensure that the integrity, confidentiality and availability of information is owned, controlled or processed by the organization.
Security liaison - Manage security issues and incidents, and participate in problem and change management forums. Ensuring timely reporting and adequate participation in investigation for security incidents.
Architecture/engineering support - Recommend and coordinate the implementation of technical controls to support and enforce defined security policies. Ensure that security is factored into the evaluation, selection, installation and configuration of hardware, applications and software.
Operational support - Manage the day-to-day activities of threat and vulnerability management, identify risk tolerances, recommend treatment plans and communicate information about residual risk.



Requirements
A minimum of five years of IT experience, with three years in an information security role and at least one year in a supervisory capacity.
A bachelor's degree in information systems or equivalent work experience.
Experience with common information security management frameworks, such as International Standards Organization (ISO) 2700x, Service Organization Control (SOC2).
Experience developing and maintaining policies, procedures, standards and guidelines.
Proficiency in performing risk, business impact, control and vulnerability assessments, and in defining treatment strategies
Strong analytical skills to analyse security requirements and relate them to appropriate security controls.
Experience in system technology security testing (vulnerability scanning and penetration testing)
Familiarity in application technology security testing (white box, black box and code review).



What we offer
Work in stimulating environment
An organisation with a flat hierarchy and possibility to impact the team and IT processes from day one
Career development in a fast-growing company
Competitive remuneration and perks



We have high ambitions and people that are passionate about what they do. Everyone digs in and makes the most of every day. We discuss, share and learn from each other. We would love for you to join our team!

Sammanfattning

  • Arbetsplats: Billhop AB Stockholm
  • 1 plats
  • Tills vidare
  • Heltid
  • Fast månads- vecko- eller timlön
  • Publicerat: 11 april 2022
  • Ansök senast: 29 april 2022

Postadress

Kungsgatan 10
Stockholm, 11143

Liknande jobb


Dataskyddssamordnare till Nacka Energi

11 maj 2023

11 maj 2023

11 maj 2023