Activities:
• Participate in the creation and development of the normative documents and guidelines related with its areas of responsibility and control their enforcement along the product/service lifecycle;
• Ensure the development and implementation of an adequate training and awareness plan for the staff, as well as exercises in the domain of Information Security;
• Develop and contribute to supporting the development of an advanced security and risk culture by defining Security by Design measures (diagrams and processes);
• Develop the existing reporting framework and contribute to the organizational committees related to its perimeter of intervention;
• Ensure the consistent follow-up of the risks identified, as well as the actions defined as being necessary to develop the local information security framework;
• Contribute to the Group information security control framework, by adopting an internal control framework sustained on the activity best practices;
• Contribute to investigation and analyses information security alerts and incidents with the respective owners;
• Participate in the human and organizational actions associated with the development of the information security maturity, including access control;
• Produce and maintain documentation (procedures, knowledge articles, diagrams).
Profile MUST HAVE
• Degree in one of the following areas preferably: Information Technologies, Business Administration, Audit, Security, etc.
• At least 6 years of experience in Audit and Risk Analysis and/or in Operations Security environment;
• Knowledge in infrastructure management and automation tools, namely focus on DevSecOps and Red Team management;
• Proven knowledge of WebPortals, WiFi, IoT and/or Unified Communications solutions;
• Proven knowledge of Cloud Solutions (AWS and Azure);
• Good analytical and organization skills, attention to detail;
• Strive for customer satisfaction and aim to deliver high quality results;
• Respect the procedures, methodologies and directives (i.e. ISO/IEC 27001, NIST, COBIT);
• High sense of confidentiality;
• Good listening and questioning ability, good learning skills;
• Ability to plan work ahead and to prioritize workload;
• Ability and willing to work in a multi-cultural environment;
• Curious and willing to work on different tasks and topics;
• Sense of responsibility;
• Pro-activity and dynamism;
• Good knowledge of English (at least B1).
Model: Hybrid (up to 40% at office)
Location: Lisbon
Travel required: No
#J-18808-Ljbffr