Security Engineer at 42dot defining security components and collaborating with SDV engineering team. Responsible for developing integrated security solutions and verifying security requirements.
About the role
- Information Security Manager overseeing digital security initiatives in SEB Baltic environment. Designing processes to manage ICT risks and ensuring compliance with regulations.
Responsibilities
- Lead the improvements of the Information Security Management System (ISMS), ensuring it scales with organizational growth and the evolving threat landscape.
- Design and implement processes for identifying and treating ICT Risks in strict alignment with Non-Functional Requirements (NFR) and ICT frameworks.
- Perform security risk assessments for business and technology initiatives, ensuring security standards are met.
- Oversee the third-party assurance framework ensuring third-party vendors comply with security policies and requirements.
- Translate complex regulations (GDPR, DORA, NIS2) into actionable internal control sets. Respond to enquiries from regulatory bodies and audit institutions.
- Participate during security incidents, specifically managing the regulatory and data protection implications of Data Breaches and Third-Party incidents.
- Participate in security awareness and training programs for both employees and third parties to foster a risk-aware culture.
- Developing and presenting high-level security posture dashboards, risk heatmaps, and compliance roadmaps to stakeholders.
Requirements
- At least 5+ years of experience in the Information Security field, with a specialized focus on the GRC domain.
- Experience in designing and implementing security processes and frameworks, rather than just maintaining them.
- Ability to lead and manage large-scale security initiatives and complex projects from conception to completion.
- Ability to translate technical cyber risks into business impact for high-level stakeholders.
- Experience in navigating regulatory and legal complexities.
- Good communication and teamwork skills.
- Ability to work well under minimal supervision.
- Have a strong drive for improvements.
- Professional information security certifications.
- Fluency in English and at least one of local Baltic language (Latvian, Lithuanian or Estonian), with excellent verbal and written communication skills.
Benefits
- Interesting and challenging work in highly professional international team.
- Friendly and welcoming culture.
- Hybrid way of working.
- Extensive opportunities for professional development.
- Attractive compensation and benefits.
- Challenging, cutting-edge work.
Job title
Job type
Experience level
Salary
Degree requirement
Location requirements
Network Administrator responsible for installing and securing MEPPIs data communication networks. Provides Level 2 support and participates in a 24x7 on - call rotation.
Senior Consultant in IT Security implementing tailored Information Security Management strategies for various clients. Leading project teams and developing security solutions both remotely and on - site.
Wachleitung coordinating security services at PTB facilities. Managing shifts and collaborating with safety engineers for effective protection measures.
Developing an ISMS tool in cybersecurity consulting while collaborating with development teams and enhancing user experience. Engaging in software development with Angular and .NET.
Safety Processes Specialist leading initiatives to enhance process safety amid operations. Collaborating with teams to mitigate risks and ensure compliance in operational bases at ALE.
Ciberseguridad OT/ICS specialist managing security for industrial control systems at Acuity. Working closely with cross - functional teams to implement security measures and compliance.
IT & Cloud Security Engineer at HARMAN leading Cloud Security strategy and risk governance initiatives. Working with cross - functional teams to enhance security posture and manage vendor relationships.
Senior Cybersecurity Assessor conducting cybersecurity program assessments using NIST CSF and RMF principles. Identifying strengths and weaknesses while developing recommendations for improvement in the Agency’s cybersecurity posture.
Senior Cybersecurity Risk Advisor providing expert - level guidance to Agency’s CSRM Program Team and executives. Reviewing deliverables and ensuring alignment with federal guidance and best practices.