Risk Analyst supporting Keyloop’s Security Governance by managing information security risks. Identifying and monitoring risks while ensuring compliance with regulatory standards.
About the role
- Security Compliance Specialist enhancing cybersecurity and compliance framework at Trezor. Collaborating across teams to shape security and compliance operations in the tech sector.
Responsibilities
- Conduct assessments of IT systems supply chain risks, focusing on cybersecurity aspects
- Develop and enforce security standards and protocols for suppliers
- Monitor and evaluate the cybersecurity practices of suppliers and partners
- Support the design and implementation of access control policies and procedures, ensuring that employees have access only to the resources necessary for their roles
- Participate in the user account management, including setting up, modifying, and revoking access as needed
- Support regular access reviews to ensure compliance with the least-privilege principles
- Coordinate and execute regular security and compliance audits
- Analyze audit and test results to identify vulnerabilities and non-compliance issues
- Recommend and follow up on corrective actions to address identified weaknesses
- Assist in identifying and evaluating risks to data and information systems
- Help with developing strategies and rules to mitigate identified risks
- Collaborate with various departments to ensure risk management measures are integrated across the company
- Conduct regular reviews of data processing activities
- Support implementation of data protection policies with focus on compliance with GDPR
- Assist in maintaining an inventory of all IT assets and ensure they are correctly classified and managed according to their security requirements
- Participate in the development and enforcement of policies related to the lifecycle management of these assets, including procurement, usage, and disposal
- Collaborate with HR to ensure that roles and responsibilities are clearly defined and integrated into access management
- Support embedding cybersecurity awareness into the organizational culture
- Help in the implementation of a data classification framework to categorize data based on sensitivity
- Support in implementing controls and handling procedures for different categories of data
- Collaborate with relevant departments to ensure consistent application of the classification scheme across the organization
Requirements
- 2+ years of experience in a security and/or compliance role, with a strong focus on IT segment
- Basic orientation in ISMS, ISO 27001, CRA and NIS2 regulatory requirements
- Ability to effectively communicate security concepts to both non-technical and technical stakeholders
- Adaptability, a high level of attention to detail
- Demonstrated reliability and strong issue-resolution skills
- Proficiency in English is essential.
Benefits
- A unique opportunity to be part of a pioneering company in the crypto industry
- Option to receive part of your compensation in bitcoin
- Flexible working hours and a supportive team to help you implement your ideas
- Budget for professional development, including training programs, courses, and workshops of your choice
- Friendly, open culture with regular company events and fun get-togethers
- Renovated offices with a gym, massages, football table, billiards, PlayStation, 3D printer and free on-site parking
- Additional benefits such as a MultiSport card, company mobile phone tariff, and more
Job title
Job type
Experience level
Salary
Not specified
Degree requirement
Tech skills
Location requirements
Cloud Security Engineer responsible for designing and implementing security controls for cloud environments at Keyloop. Ensuring secure adoption and compliance while working with platform and engineering teams.
IT Infrastructure & Security Engineer managing and developing network and server infrastructure at L - mobile. Collaborating on security measures and supporting internal audits in a hybrid role.
Ingénieur sécurité des procédés en alternance chez Arkema. Conception de e - learning et développement d’outils pour évaluer les risques industriels.
Cyber Security Consultant to deliver Wanstor’s security offerings and improve customer Cyber Security and Data Security. Involves consulting, implementation, and oversight of security measures.
Senior Manager in IT - Strategieberatung for Defense & Security, developing client relationships and growth strategies. Leading IT transformation projects in security - critical organizations.
Information Security Expert overseeing ISMS development and IT security compliance in Germany. Collaborates with management and leads regulatory requirements implementation.
IT Professional responsible for implementing innovative industrial IT solutions. Working in an agile environment while ensuring IT and OT security for production networks.
Cyber Security Specialist focusing on IT security measures and infrastructure protection for a motivated team. Engaging in both project work and internal security processes.
IT & Cybersecurity Intern assisting with help desk support and IT system maintenance at OBDeleven. Collaborating with teams and improving IT documentation in a fun workplace culture.