The main objective of the Security and Compliance Manager is to ensure that security and compliance awareness and requirements is given and realized worldwide.
Additionally this new role will be responsible for the creation and maintenance of a 2 year plan for security & compliance aligned to the IT Strategy.
The position is part of the IT B2B Team and is located in the Head Office of Palma de Mallorca.
The main responsibilities are:
Define, implement and own the Information Security Policy (ISP) and its content. Define the security requirements for the systems.
Start to build a continuous auditing process to ensure systems, applications and processes security or compliance failures can be detected in real time and action accordingly.
Serve as a communicator for threats and vulnerabilities in terms of security and configurations
Liaise with crisis management in regards to security incidents with the support of the infrastructure team. Serve as a coordinator for the security incident.
Plan, analyze, implement and support all compliance audits or work such as LOPD, PCI DSS, etc.
Education and Training, development and delivery of Security and Compliance training across the organization.
Risk assessment and Incident prevention, develop and implement ongoing risk assessment throughout the organization.
Collaborate in the building and maintenance of a Knowledge Base aligned with the Security and Compliance guidelines.
Ingeniero Técnico - Técnico en Informática de Sistemas
Al menos 1 año
Imprescindible residente en:
Provincia Puesto Vacante
Engineering or university studies in Computer Science, Telematics or Telecommunications
More than 1 year in similar position or as auditor
Knowledge in PCI DSS, LOPD and ISO 270001
Skills and Competencies:
Fluent in both English and Spanish (written and oral)