Plus
Включить Plus
Назад
Company hidden
17 часов назад

Information Security Manager

Формат работы
hybrid
Тип работы
fulltime
Грейд
lead
Английский
c1
Страна
Spain
Вакансия из списка Hirify.GlobalВакансия из Hirify Global, списка международных tech-компаний
Для мэтча и отклика нужен Plus

Мэтч & Сопровод

Для мэтча с этой вакансией нужен Plus

Описание вакансии

Текст:
/

TL;DR

Information Security Manager: Own security governance program, lead risk and compliance operations, and partner with technical teams to ensure audit-ready security practices with an accent on ISO 27001, GDPR, and vendor risk management. Focus on improving ISMS policies, conducting risk assessments, coordinating audits, and integrating governance with DevSecOps.

Location: Sant Joan Despí (hybrid: 3 days remote per week, office attendance required). Easily accessible by public transport.

Company

International technology group with over 14,000 employees in 40 countries, specializing in SecurityTech for digital security, financial platforms, currency technology, and IoT connectivity solutions.

What you will do

  • Own and improve ISMS, policies, and security governance lifecycle.
  • Act as advisor to engineering, product, compliance, and customer-facing teams.
  • Lead risk assessments, maintain risk register, and drive quarterly risk cycles.
  • Ensure compliance with ISO 27001:2022, CROE, GDPR, and customer requirements, including hands-on configuration.
  • Coordinate external audits and vendor risk programs for supply chain resilience.
  • Review product/architectural changes and collaborate with Security Architect on DevSecOps and cloud practices.

Requirements

  • Fluent English; German or Spanish is a plus.
  • At least 3 years in information security, risk, audit, or compliance, ideally in regulated environments (FinTech, banking, payments, SaaS).
  • Strong understanding of ISO 27001, risk methodologies, and modern security frameworks.
  • Solid knowledge of security controls (IAM, third-party risk, secure SDLC, cloud).
  • Excellent analytical, documentation, and problem-solving skills; ability to challenge engineering teams constructively.

Nice to have

  • ISO 27001 Lead Implementer/Auditor, CISM, CISSP, CRISC, CCSP.

Culture & Benefits

  • People-oriented environment with diverse nationalities, great team spirit, flat hierarchies, and Equal Opportunity Employer (LGBT+ friendly).
  • Flexible working hours (Mon–Thu 8:30–17:30, Fri 8:30–15:30) with 3 days remote work.
  • Continuous training, coaching, talent development, flexible compensation (transport, private insurance), own canteen with affordable meals.
  • Global collaboration on impactful projects like digital currencies.

Будьте осторожны: если работодатель просит войти в их систему, используя iCloud/Google, прислать код/пароль, запустить код/ПО, не делайте этого - это мошенники. Обязательно жмите "Пожаловаться" или пишите в поддержку. Подробнее в гайде →