Contribute to the ongoing design, implementation, improvement and maintenance of the SumUp Information Security Management Program; Improve and maintain information security risk management systems; Review information security controls, audit recommendations and risk mitigation plans and collaborate with other teams to implement the necessary actions; Participate in third-party risk management by conducting third party due diligence, supplier reviews and contract review; Collaborate with other stakeholders to promote information security best practices, provide expert advice and help to integrate security principles into their processes
Requirements:
You have a Bachelor or Master Degree in information security or technical area or similar qualification; You have 4+ years of professional experience in a similar position and have acquired knowledge in information security governance, information security risk management and data protection; You have knowledge and experience of common information security standards (e.g, ISO 2700X, NIST), payment standard (e.g. PCI-DSS) and data privacy regulation (e.g. GDPR); Ideally you will have experience with third-party risk management and audit procedures as well
Text:
Information Security Specialist Contribute to the ongoing design, implementation, improvement and maintenance of the SumUp Information Security Management Program; Improve and maintain information security risk management systems; Review information security controls, audit recommendations and risk mitigation plans and collaborate with other teams to implement the necessary actions; Participate in third-party risk management by conducting third party due diligence, supplier reviews and contract review; Collaborate with other stakeholders to promote information security best practices, provide expert advice and help to integrate security principles into their processes You have a Bachelor or Master Degree in information security or technical area or similar qualification; You have 4+ years of professional experience in a similar position and have acquired knowledge in information security governance, information security risk management and data protection; You have knowledge and experience of common information security standards (e.g, ISO 2700X, NIST), payment standard (e.g. PCI-DSS) and data privacy regulation (e.g. GDPR); Ideally you will have experience with third-party risk management and audit procedures as well
Please click here, if the job didn't load correctly.
Please wait. You are being redirected to the job in 3 seconds.
