Consultant Pablo Romo
Date posted 22 de septiembre de 2016
A rarely available Security Officer role has just become available in Madrid at one of the most important international bank.
About the Security Officer Role
Work collaboratively with the Group to establish an appropriate information and physical security programs that includes policy, practices and standards; awareness and training; incident response and management; risk assessment and management; and the development and maintenance of a supporting IT architecture to support the day to day information technology needs of designated projects and groups in order to ensure compliance with safeguarding policies, procedures and regulations.
-Lead, coordinate, and execute proactive Physical and Information Security consulting to the Business and technology teams covering Infrastructure Security, Disaster Recover, Management Data, Network Architecture and Design, User Access Management, Management of Third Parties.
-Align Group policies and procedures with local needs, improving and helping the rest of the units to understand the business and regulations from the local perspective. Participate, contribute and assist in the technical and strategic security measures for the whole community.
-Provide ad hoc Support on special Security hot topics for the Business and manage line business and manage line of business IT risk catalogue. Push business partners to mitigate and close open risks while being pragmatic to know when to accept risk.
-Review all system-related security plans throughout the organization´s network. Monitors compliance with the information and physical security policies and procedures, referring problems to appropriate department manager.
-Provide assistance to IT/Physical Audits, acting as a central point of contact for all internal and external regulatory audits and reviews. Assist management in preparation for audits, as well as, provide guidance on remediation and timelines.
With at least 10 years of experience in Information Security, you will be an expert of information security standards (ISO17799/27002), rules and regulations related to information security, data confidentiality (PCI, NIST, NSA) and other various security standards. In addition, you will need to have experience in security policy development, security education, cloud and web application security, SAAS solutions, network security, network penetration testing, application vulnerability assessment, risk analysis and compliance management. A high level of English is required also for the role.
If you are driven, determined and want to take the next step in your career, this is the role for you.