Information Security Officer
at SurePay
Utrecht, Utrecht, Netherlands -
Start Date | Expiry Date | Salary | Posted On | Experience | Skills | Telecommute | Sponsor Visa |
---|---|---|---|---|---|---|---|
Immediate | 24 Oct, 2024 | Not Specified | 28 Jul, 2024 | 2 year(s) or above | Information Security,English,Computer Science,Security Compliance,Stakeholder Management | No | No |
Required Visa Status:
Citizen | GC |
US Citizen | Student Visa |
H1B | CPT |
OPT | H4 Spouse of H1B |
GC Green Card |
Employment Type:
Full Time | Part Time |
Permanent | Independent - 1099 |
Contract – W2 | C2H Independent |
C2H W2 | Contract – Corp 2 Corp |
Contract to Hire – Corp 2 Corp |
Description:
SurePay is growing, and we are now looking for an Information & Security Officer to join us and help strengthen our business operations. Do you thrive in a complex and dynamic environment? And are you well-versed in information security and compliance? If so, we want to meet you! At SurePay we work every day to make payments safer, more secure and more personal. We’re on a mission to offer and implement our SaaS solutions throughout Europe. This role within SurePay is of high importance to ensure the avoidance of a variety of issues and safeguard information security standards.
Your main focus will be on ensuring that we are compliant with our ISAE 3000 and ISO27001 standard. You will work alongside the Compliance & Risk Manager and another Security Officer within your own team to ensure efficiency in running the business across various European countries. Of course, you will liaise with many other colleagues across the organisation to ensure that standards are met everywhere, including our Legal team. This position is ideal for a proactive candidate who can manage their own tasks independently without needing a lot of supervision.
REQUIRED SKILLS
- Bachelor’s degree in Information Security, Computer Science, or related field.
- 2-3 years of experience in information security compliance.
- Familiarity with ISO27001, SOC2, or ISAE 3402/300 audits.
- Strong documentation and policy-writing skills.
- Ability to work independently and manage own tasks, a strong individual contributor who does not require a lot of supervision and follow-ups.
- Good at planning and stakeholder management.
- Strong organizational skills and can-do mentality.
- Fluency in English.
Responsibilities:
- Handle ISO27001, and ISAE 3000 audits and other customer audits.
- Participate in internal audits.
- Ensure that policies and procedures are documented and updated.
- Respond to third-party due diligence questionnaires and perform contract reviews.
- Identify security risks and assist the Compliance & Risk Manager in coming up with mitigation plans.
- Participate in risk awareness programs.
- Understand and implement basic AWS security best practices.
- Understand and implement basic secure software development lifecycle (SDLC) requirements.
- Implement and manage CIS Level1/2 controls using JAMF Pro.
- Working closely with the Legal Counsel, Compliance & Risk Manager, Security Officer and Security Engineer
REQUIREMENT SUMMARY
Min:2.0Max:3.0 year(s)
Information Technology/IT
IT Software - Network Administration / Security
Other
Graduate
Information security computer science or related field
Proficient
1
Utrecht, Netherlands