EU IT Security Professional

Responsibilities:

Strategic and Planning:

• Enhance compliance programs and processes.
• Develop, review, and modify infosec and privacy policies.
• Execute audits to measure compliance with security policies.
• Monitor evolving privacy laws for adaptation.
• Determine legal action for security incidents violating privacy principles.

Compliance and Audit:

• Manage compliance testing for regulations.
• Conduct internal security risk assessments and audits.
• Establish IT security audit procedures (TISAX, ISO 27001).
• Coordinate third-party audits.
• Handle data privacy for new IT implementations.

Security Liaison:

• Create tools for compliance communication.
• Develop strategy compliant with laws and standards.
• Prepare reports for management and regulators.
• Document and investigate compliance issues.
• Collaborate with leaders on risk solutions.

• Ensure security in hardware and software selection.
• Recommend network security architecture.
• Implement new security tech.
• Align technical skills with future requirements.

Operational Support:

• Manage outsourced infosec vendors.
• Handle incident detection and response.
• Manage threat and vulnerability activities.
• Oversee security testing and remediation.
• Conduct security awareness training.
• Supervise audits and tests.

• 5-7 years of related experience, 3+ in infosec.
• Strong IT security understanding: SASE, SD-WAN, Cloud.
• Effective communication with IT, project, and dev teams.
• Knowledge of info risk principles and controls.
• Familiar with ISO 2700x, ITIL, COBIT frameworks.
• Aware of legal/regulatory rules (EU Privacy Directive).
• Analytical skills to match network needs with security.
• Proficient in risk assessment and treatment strategies.
• Info systems degree or equivalent experience.