Principal Information Security Consultant at Westpac focusing on security protocols and employee benefits for staff. Hybrid role centrally located with opportunities for professional development and employee perks.
About the role
- Information Security Consultant ensuring compliance and risk management for SEB Baltic's IT security. Collaborate on security assessments and implement information security policies effectively.
Responsibilities
- Conducting security risk assessments to assess compliance to security policies, identify vulnerabilities and threats to information assets;
- Conducting security assurance activities to assess third-party vendors;
- Conducting compliance assessments and ensuring compliance with relevant regulatory requirements such as DORA, ISO 27001, PCI DSS;
- Ensuring that information security risks are identified, assessed, managed and reported;
- Assisting in developing and implementing security policies, standards and procedures;
- Performing various Information Security GRC activities to support security team and other internal stakeholders;
- Providing security awareness training to employees.
Requirements
- At least 2 years’ experience in information security related field
- Knowledge of information security principles, technologies, control measures and security remediation practices
- Knowledge of information security risk management practices
- Knowledge of relevant regulatory requirements such as DORA, ISO 27001, PCI-DSS
- Ability to assess information and cyber security risks, analyze and present critical security risks and potential remediation activities
- Ability to communicate effectively to all levels of management within the business
- Ability to manage security initiatives and activities
- Good communication and teamwork skills
- Ability to work well under minimal supervision
- Have a strong drive for improvements
- Professional information security certifications would be considered as an advantage
- Fluency in English and Estonian
Benefits
- Interesting and challenging work in highly professional international team
- Friendly and welcoming culture
- Hybrid way of working
- Extensive opportunities for professional development
- Attractive compensation and benefits
- Challenging, cutting-edge work.
Job title
Job type
Experience level
Salary
Degree requirement
Tech skills
Location requirements
Engineer supporting secure development lifecycle processes for product lines in the energy sector. Collaborating with R&D on security requirements and compliance audits.
Automation Oversight Engineer providing oversight of compliance in automated device configurations for Comcast Business. Managing configuration checks and reporting, ensuring reliable oversight and improvement strategies.
Principal Systems Engineer - Cybersecurity role in protecting our nation's products as part of Integrated Platform Solutions team. Develop solutions utilizing RMF, Anti - Tamper, Software Assurance, and more.
Agent de Sécurité assurant la sécurité des usagers du réseau de transport TBM. Rattaché au Manager de Proximité Sûreté, garantissant la qualité de service public de transport en commun.
Web and Remote Access Security Engineer managing secure remote connectivity solutions. Collaborating across security and networking domains to enable reliable access for global workforce.
Security Officer protecting patients, visitors, and staff at Shriners Hospital for Children in Sacramento. Engaging in various responsibilities related to safety and security on hospital property.
Senior IT Security Administrator supporting IT security operations at Uline. Collaborating with teams to develop security procedures and manage risks effectively.
Security Technician at Presbyterian Healthcare Services ensuring safety through patrols, incident response, and emergency preparedness. Responsibilities include monitoring risks and documenting activities efficiently.
Product Security Engineer at Junglee Games ensuring security is integrated into each stage of the software development lifecycle. Collaborate across teams and harden the security of products and platforms.