IT Security Associate - Barcelona, España - EcoVadis

EcoVadis

Empresa verificada

Barcelona, España

hace 2 semanas

Publicado por:

Isabel García

beBee Recruiter

Descripción

Company Description:

Work smart, have fun and make an impact_

Our purpose is to guide all companies toward a sustainable world. EcoVadis is the leading provider of business sustainability ratings. Our solutions are backed by an international team of experts and powerful technology. We analyze data and build sustainability scorecards that give companies actionable insights into their environmental, social and ethical risks.

Be a part of the global sustainability change in business. Grow your career. Work with extraordinary people. Feel valued for your contribution.

Learn more about our team and culture on EcoVadis careers page

If you have questions about the company or open roles you can Chat with an insider

Our IT Security team is seeking an IT Security Associate to coordinate and support security operations practices in our company, and bring forth security expertise in a fast-growing team.

You will be the main point of contact for the alignment and provide hands-on collaboration in all areas of IT Security, ensuring that we deliver an outstanding service to our internal and external customers and stakeholders.

As the IT Security Associate, you will become the main point of contact and coordinator for the remediation of any improvement areas, as well as the 'face' of our team towards our Sales and Customer Solutions' teams.

Also, your knowledge and willingness to learn on new security trends and technologies will be of great value to our company, while identifying efficiency and automation opportunities.

This role, reporting directly to the IT Security Director, will include the following responsibilities:

Active support on security questionnaires, contract reviews and client meetings.
Define and conduct security reviews (technical and compliance checks) of our network, systems and platforms, and track the remediation of any identified gaps.
Coordinate and organize evidence gathering for certification testing and audits.
Delineate and execute a control testing strategy to comply with internal IT Security framework compliance, standards, and other applicable regulations.
Establish and collaborate in the creation and maintenance of security guidelines for multiple technologies (e.g. SASE solutions, security baselines, etc.)
Manage and lead improvements in the resiliency of noncloud environments and operations (DRP, Backups, Domains, Incident Response).
Maintain the security posture of our external surface, and manage issue remediations as necessary.
Ensure proper documentation, configuration and operation of our security protective measures, and ensure that necessary fixes are planned and executed.
Develop reports, dashboards and other mechanisms to report on project tracking, remediation progress, and other domains that require continuous followup.
Promote an IT Security culture, and collaborate with the team in the creation of articles, FAQs, and documentation related to security awareness and training.
Advocate for continuous improvement and automation wherever possible.
Assist with other organization security projects and tasks as required.

Qualifications

2+ years of experience in a similar role in a relevant software or internet service industry,
Minimum Bachelor of Science degree in Computer Science, Computer Engineering, or a related technical field,
Strong experience in designing and implementing security guidelines and mechanisms to check adherence to such standards,
Experience in conducting manual and/or automatic security compliance reviews,
Good knowledge of IT Security frameworks (e.g. ISO 27001, NIST 80053, etc.),
Managing and prioritizing multiple tasks in accordance with high level objectives, and anticipating and addressing challenges as they arise.
Strong foundation in information security, security engineering, network security, authentication and security protocols, access controls, etc.,
Experience with engaging external stakeholders (e.g. clients) regarding security protection methods, and agreeing on contractual clauses,
Educated in the creation of reports and dashboards for different technical and executive stakeholders,
Ability to conduct research about areas unknown to him/her, and use that knowledge to deliver security guidelines and propose improvements,
Capacity to be organized and efficient handling diverse tasks simultaneously,
Ability to adapt and thrive in a fastchanging environment,
Open to work in an international, multilingual environment,
Proficient in English (oral and written).
French language proficiency is an asset,
Handson experience with Google Workspace is a plus.

Additional Information Our growing team in Spain is full of talented professionals from various fields who all share a desire to make sustainability real.**We offer competitive salaries and support personal growth from day one.

This includes extensive onboarding, teammates' support and a brand new e-learnin