Looking for a Security GRC Specialist in Gothenburg
Gothenburg
OBS! Ansökningsperioden för denna annonsen har passerat.
Arbetsbeskrivning
Veritaz is a fast-growing IT-consultant firm. Our company is made up of insanely bright people from over 4 countries, and we are located in Sweden, UK, US and Pakistan. The voyage has been incredible this far, but it is only the beginning.
We are currently looking for passionate experienced and result-oriented candidates for the role of a Security GRC Specialist with a professional background and exemplary concepts to join our team.
Key Responsibilities:
Your responsibilities as a Security GRC Specialist will include:
Assist the team in increasing security levels by identifying risks and implementing mitigation strategies.
Assist the Head of Enterprise & Product Security in carrying out security responsibilities, working on a wide range of information and cybersecurity issues.
Keep an up-to-date view of the threat landscape. Translate that knowledge into threat modelling, risk identification, and actionable plans to safeguard the company.
Develop and maintain security policies and guidelines in accordance with ISO27001, NIST 800-53, and the CIS Framework.
Maintain the information security risk assessment framework and risk register in accordance with ISO27001 and CIS Framework standards.
Maintain a security overview and make recommendations based on the results.
Participate in a broader security awareness programme, developing ideas and content and, as needed, providing orientation, educational programmes, and ongoing communication.
Assist the security team in identifying and documenting KPIs.
Schedule security audits for various security controls identified by the GRC framework on a regular basis.
As part of the Operating Framework, develop and maintain a Security framework that integrates with other frameworks (e.g., Safety, Quality).
Develop, maintain, and manage an ISO 27001-compliant Information Security Management System.
Create a GRC framework that adheres to best practises and meets control requirements.
Education, Expertise, and experience requirements:
Competency prerequisites for the applicant:
In-depth understanding of security best practices/standards, such as ISO27001, NIST 800-53, ISO 21434, and others.
Understand the fundamentals of security, as well as the ability to comprehend, decipher, and connect the dots between complex security issues.
Information security policies, standards, and processes/procedures development experience
Ability to lead, prioritise, and monitor security programmes in accordance with agreed-upon deadlines
Excellent problem-solving and analytical abilities
Security analyst who is enthusiastic, results-oriented, and has a strategic outlook.
Excellent teamwork skills, excellent communication skills, and ability to lead change
Quick learner who can apply previous and current knowledge to a variety of security challenges on a daily basis.
Working in an international organisation with people from various cultures is a rewarding experience.
Other:
Furthermore, the following qualities are desirable and will help you succeed:
Knowledge/Experience with the Product Cybersecurity Compliance Landscape
Knowledge/Experience with the Vehicle Manufacturing Industry in Sweden or any other country (UNECE Reg. 155, ISO 21434)
Scope: 100%
Location: Gothenburg
So, what are you still waiting for? Join us on our adventure!
We are currently looking for passionate experienced and result-oriented candidates for the role of a Security GRC Specialist with a professional background and exemplary concepts to join our team.
Key Responsibilities:
Your responsibilities as a Security GRC Specialist will include:
Assist the team in increasing security levels by identifying risks and implementing mitigation strategies.
Assist the Head of Enterprise & Product Security in carrying out security responsibilities, working on a wide range of information and cybersecurity issues.
Keep an up-to-date view of the threat landscape. Translate that knowledge into threat modelling, risk identification, and actionable plans to safeguard the company.
Develop and maintain security policies and guidelines in accordance with ISO27001, NIST 800-53, and the CIS Framework.
Maintain the information security risk assessment framework and risk register in accordance with ISO27001 and CIS Framework standards.
Maintain a security overview and make recommendations based on the results.
Participate in a broader security awareness programme, developing ideas and content and, as needed, providing orientation, educational programmes, and ongoing communication.
Assist the security team in identifying and documenting KPIs.
Schedule security audits for various security controls identified by the GRC framework on a regular basis.
As part of the Operating Framework, develop and maintain a Security framework that integrates with other frameworks (e.g., Safety, Quality).
Develop, maintain, and manage an ISO 27001-compliant Information Security Management System.
Create a GRC framework that adheres to best practises and meets control requirements.
Education, Expertise, and experience requirements:
Competency prerequisites for the applicant:
In-depth understanding of security best practices/standards, such as ISO27001, NIST 800-53, ISO 21434, and others.
Understand the fundamentals of security, as well as the ability to comprehend, decipher, and connect the dots between complex security issues.
Information security policies, standards, and processes/procedures development experience
Ability to lead, prioritise, and monitor security programmes in accordance with agreed-upon deadlines
Excellent problem-solving and analytical abilities
Security analyst who is enthusiastic, results-oriented, and has a strategic outlook.
Excellent teamwork skills, excellent communication skills, and ability to lead change
Quick learner who can apply previous and current knowledge to a variety of security challenges on a daily basis.
Working in an international organisation with people from various cultures is a rewarding experience.
Other:
Furthermore, the following qualities are desirable and will help you succeed:
Knowledge/Experience with the Product Cybersecurity Compliance Landscape
Knowledge/Experience with the Vehicle Manufacturing Industry in Sweden or any other country (UNECE Reg. 155, ISO 21434)
Scope: 100%
Location: Gothenburg
So, what are you still waiting for? Join us on our adventure!
Sammanfattning
- Arbetsplats: Gothenburg
- 1 plats
- Tills vidare
- Heltid
- Fast och rörlig lön
- Publicerat: 11 april 2022
- Ansök senast: 11 maj 2022
Postadress
GothenburgGÖTEBORG, 40530
Liknande jobb
Java Software Engineer
ecareer
25 november 2024
Backend Developer
Perigee AB
Malmö
19 november 2024
Systemutvecklare till Sensor Försäkring!
Sensor Försäkring Norden AB
19 november 2024
Systemutvecklare till Sensor Försäkring!
Sensor Försäkring Norden AB
19 november 2024