Information Security Specialist

Information Security Specialist

Arbetsbeskrivning

About the role

Tink's security vision is to “make sure that our customers and our own employees trust that Tink secures their data better than what their bank does”. The aim is not a perception of trust, but real, verifiable trust. And yes ... we are well aware that for a company to gain the trust of its own employees (who actually know all the “unseen” details of how data is stored, accessed, processed and protected), this is a much harder task. Challenging existing ideas and suggesting innovative solutions is one of Tink's values and we in the security domain do not shy away from such challenges.

We are now looking for an Information Security specialist who will make sure that not only do we have the correct and sufficient processes and tools in place but openly and proudly communicate them to our stakeholders, customers and auditors.

As an information security specialist, you need to be able to translate high level requirements to technical specifications and the other way round, document your work and communicate it in an educational and approachable way, and by doing so drive organisational security improvements.



Responsibilities

- Improve and expand Tink’s Information Security Management Framework (i.e., our security policies, procedures and standards)
- Communicate Tink's security posture and modern approach to security to our customers
- Serve as an expert in Tink’s Information Security capabilities, solutions, policies, procedures and standards; both internally and externally
- Create, validate and audit access control policies for Tink’ systems
- Conduct third party assessments of partners, software vendors and SaaS apps
- Support in security reviews and audit activities


Required skills

- Experience working with Information Security Management Systems (ISMS)
- High ethical standards
- Excellent communication & collaboration skills
- You see security as a business enabler not as a step in the compliance process
- You care about giving real, tangible advice/recommendations instead of fluffy, pompous and pretentious InfoSec jargon when interacting with colleagues
- You love to share and document your thoughts and knowledge for others to benefit from




Good to have

- Experience with ISO/IEC 27001, PCI/DSS or other information security standards
- Experience from working in a DevOps and cloud-only environment
- Methodical and diligent with outstanding planning and organisational skills




How we work

Tink is an engineering and product company at heart. We look for people with a broad set of technical skills who are ready to tackle whatever problem. As an engineer at Tink, you will work in a specific team critical to Tink’s needs with opportunities to switch teams and projects as you and our fast-paced business grow and evolve. We need our colleagues to be versatile, enthusiastic and display leadership qualities to tackle new problems across the board as we continue to push our product forward.

Even though we are separated in teams, Tink is still a true start-up and one big team where everyone’s opinion is valued. It’s not uncommon that we all sit together and workshop on the next feature design on a Friday afternoon, and build prototypes and ship beta versions the week after. There is a great degree of freedom within your team and you are solely responsible for what you do and your time. This is a perfect time to join Tink and put yourself in one of these small, growing and creative teams.



Application

Feel free to attach links to your Github account or anything else you feel we should know about.

Kontaktpersoner på detta företaget

Jonas Berglin

Sammanfattning

  • Arbetsplats: Tink
  • 1 plats
  • Tillsvidare
  • Heltid
  • Fast månads- vecko- eller timlön
  • Publicerat: 1 april 2020
  • Ansök senast: 18 september 2020

Besöksadress

Vasagatan 11, Stockholm
None

Postadress

Vasagatan 11
Stockholm, 11120

Liknande jobb


20 december 2024