IT - Security & Compliance Engineer managing compliance standards and audits at C.H.BECK, a leading media company. Focused on IT security, risk management, and collaboration with various departments.
About the role
- Security Engineer at Fonoa enhancing cybersecurity posture, handling incident response, and ensuring compliance. Collaborating with IT, Engineering, and other teams in a hybrid work environment.
Responsibilities
- Own and continuously improve Fonoa’s information and cybersecurity posture across endpoints, identities, and SaaS tools
- Define, document, and maintain security policies, standards, and controls
- Ensure strong access controls, encryption, and secure configuration baselines
- Design, build, and maintain an end-to-end incident response framework
- Develop detection and alerting capabilities across identity, endpoint, and SaaS environments
- Lead or coordinate security incidents, including root cause analysis and post-incident reviews
- Participation in the on-call rotation schedule
- Implement and manage security automation and SOAR-style workflows
- Reduce manual security tasks through automation and repeatable playbooks
- Improve response times and consistency through tooling and process improvements
- Partner closely with IT Support on endpoint, device, and access security
- Work with other engineering functions to support secure tooling, integrations, and practices
- Support compliance activities, audits, and customer security questionnaires
- Act as a security subject-matter expert for internal stakeholders
Requirements
- 2+ years of hands-on experience in Information Security, Cyber Security, or a closely related role
- Experience designing, implementing, or operating incident response processes
- Familiarity with security detection, monitoring, and response tooling
- Strong understanding of:
- Identity and access management
- Endpoint security
- SaaS security best practices
- Ability to work independently, take initiative, and operate in ambiguous environments
- Bonus Points If You Have:
- Experience with security automation or SOAR tools
- Scripting or automation experience (Python, Go, Shell)
- Experience supporting compliance frameworks or audits
Benefits
- Competitive compensation and benefits
- Flexible working arrangements
Job title
Job type
Experience level
Salary
Not specified
Degree requirement
Tech skills
Location requirements
SAP Senior Security Consultant developing innovative security concepts for SAP environments at Axians, supporting clients with their digital transformation efforts.
Head of Product Security ensuring cybersecurity for Liebherr’s construction machines and digital products. Leading product security strategy, compliance, and team of security experts.
Cybersecurity Engineer at Openchip ensuring the security of IT systems and compliance with standards. Collaborating with DevOps and Infrastructure teams to implement best practices and mitigate risks.
Senior Product Security Engineer at Medtronic focusing on cybersecurity for medical device products. Leading vulnerability assessments and coordinating responses to security incidents.
Lead strategic implementation of work safety and health protection initiatives at PostFinance. Develop guidelines and provide training while ensuring compliance with safety standards.
Cybersecurity Engineer defining and governing corporate security architectures at GFT. Collaborating with multidisciplinary teams to ensure robust security protocols and practices.
Information Security Architect specializing in AI risk management at Wolters Kluwer. Enhancing secure adoption of Generative AI across the enterprise while ensuring compliance with industry standards.
Consultor Comercial de Soluções em Cibersegurança para fortalecer vendas na QOS. Traduzir soluções de cibersegurança em benefícios reais, influenciando decisores.
Health and safety coordinator supporting environment, health, and safety for Coca - Cola's Lachine operations. Focus on compliance and training initiatives in a manufacturing setting.