Information Security Engineer
- București, RO
Information Security Engineer
- București, RO
For our local Infrastructure team, we are looking for an Information Security Engineer that will be responsible for day to day operation of the Organization’s Information Security Program, working closely with various internal teams to ensure ongoing compliance with internal policies and procedures, and business and regulatory requirements such as PCI DSS.
What you’ll do:
Support annual certification activities including PCI DSS
Implement and enforce security and compliance policies and standards
Ensure Incident Response plans are maintained and tested
Ensure Business Continuity plans are maintained and tested
Maintain annual Security & Privacy awareness training programs
Develop internal training materials
Develop and maintain technical and procedural documentation
Participate in and facilitate internal risk assessments and security audits
Ensure monthly, quarterly, and annual compliance activities are completed by supporting teams
Work with other internal teams to coordinate responses to external audit requests
Monitor emerging information security threats and technologies
Regularly report on the progress of information security related activities
Perform Application Security and Penetration Testing
Review Changes to ensure that they comply with Security Policies and Standards
Manage Internal and External Vulnerability Scanning and Remediation Projects
Coordinate monthly System Security Maintenance
What you need to have:
University degree (preferably technical)
Relevant industry certifications such as #CISA, #CISSP, CEH, GSEC, CISM
5+ years’ experience in an information security, technical audit, or compliance role
Experience with PCI DSS, SSAE-18, ISO, GDPR, SOC
Knowledge of document management, information security technologies, vulnerability management
Working experience in network or systems administration, secure application development, penetration & security testing
Strong communication and organization skills, team player with an attention to details
Why you’ll love working with us:
International work environment in an exciting growth phase
Attractive compensation package with annual performance bonus
Trainings and individual development plan
Flexible business hours and work from home
Flexible benefits package with a monthly budget that you can use for different perks like: meal tickets, public transportation refund, travel, various gym subscriptions with 50% discounts, private pension funding, shopping vouchers etc.
Private medical subscription (with 2 different medical providers to choose from)
Bookster subscription
Fruits & coffee at the office
What you’ll do:
Support annual certification activities including PCI DSS
Implement and enforce security and compliance policies and standards
Ensure Incident Response plans are maintained and tested
Ensure Business Continuity plans are maintained and tested
Maintain annual Security & Privacy awareness training programs
Develop internal training materials
Develop and maintain technical and procedural documentation
Participate in and facilitate internal risk assessments and security audits
Ensure monthly, quarterly, and annual compliance activities are completed by supporting teams
Work with other internal teams to coordinate responses to external audit requests
Monitor emerging information security threats and technologies
Regularly report on the progress of information security related activities
Perform Application Security and Penetration Testing
Review Changes to ensure that they comply with Security Policies and Standards
Manage Internal and External Vulnerability Scanning and Remediation Projects
Coordinate monthly System Security Maintenance
What you need to have:
University degree (preferably technical)
Relevant industry certifications such as #CISA, #CISSP, CEH, GSEC, CISM
5+ years’ experience in an information security, technical audit, or compliance role
Experience with PCI DSS, SSAE-18, ISO, GDPR, SOC
Knowledge of document management, information security technologies, vulnerability management
Working experience in network or systems administration, secure application development, penetration & security testing
Strong communication and organization skills, team player with an attention to details
Why you’ll love working with us:
International work environment in an exciting growth phase
Attractive compensation package with annual performance bonus
Trainings and individual development plan
Flexible business hours and work from home
Flexible benefits package with a monthly budget that you can use for different perks like: meal tickets, public transportation refund, travel, various gym subscriptions with 50% discounts, private pension funding, shopping vouchers etc.
Private medical subscription (with 2 different medical providers to choose from)
Bookster subscription
Fruits & coffee at the office
Participă la discuţie
