The main objective of the Security and Compliance Manager is to ensure that security and compliance awareness and requirements is given and realized worldwide.
Additionally this new role will be responsible for the creation and maintenance of a 2 year plan for security & compliance aligned to the IT Strategy.
The position is part of the IT B2B Team and is located in the Head Office of Palma de Mallorca.
The main responsibilities are:
- Define, implement and own the Information Security Policy (ISP) and its content. Define the security requirements for the systems.
- Start to build a continuous auditing process to ensure systems, applications and processes security or compliance failures can be detected in real time and action accordingly.
- Serve as a communicator for threats and vulnerabilities in terms of security and configurations
- Liaise with crisis management in regards to security incidents with the support of the infrastructure team. Serve as a coordinator for the security incident.
- Plan, analyze, implement and support all compliance audits or work such as LOPD, PCI DSS, etc.
- Education and Training, development and delivery of Security and Compliance training across the organization.
- Risk assessment and Incident prevention, develop and implement ongoing risk assessment throughout the organization.
- Collaborate in the building and maintenance of a Knowledge Base aligned with the Security and Compliance guidelines.
Requisitos
Estudios mínimos:
Ingeniero Técnico - Técnico en Informática de Sistemas
Experiencia mínima:
Al menos 1 año
Imprescindible residente en:
Provincia Puesto Vacante
Requisitos mínimos:
- Engineering or university studies in Computer Science, Telematics or Telecommunications
- More than 1 year in similar position or as auditor
- Knowledge in PCI DSS, LOPD and ISO 270001
Skills and Competencies:
- Fluent in both English and Spanish (written and oral)
- Group Presentation and training skills
- Results orientated
- Team player and team leader
- Problem solving
- High level of autonomy and organization
- Good analytic capacity
Requisitos deseados:
- CISM Certification
- CISA Certification
- Master in IT Security
- Ethical Hacking
De Hotelbeds -
hace 11 meses
