Information Security Analyst SME protecting information assets by designing and maintaining security policies. Ensuring compliance with security standards in a tech services company focused on digital transformation.
About the role
- As a Security Analyst, safeguard critical information assets and manage security incidents for JOTELULU. Collaborate on risk mitigation and enhance security posture through various technologies and tools.
Responsibilities
- As a Security Analyst you will be at the forefront of safeguarding our organization's critical information assets.
- You will manage security incidents, handle vulnerability assessments, and ensure compliance with industry standards.
- Your role will also involve supporting security awareness campaigns, collaborating with teams to mitigate risks, and continuously enhancing our security posture through the administration of various tools and technologies.
- This role also involves conducting access control audits, performing risk analysis and management, and implementing security measures to comply with various certifications.
- You will Detect, analyze, and respond to information security incidents.
- Coordinate incident resolution and ensure proper documentation for each case.
- Identify, evaluate, and mitigate vulnerabilities in the organization's systems and networks.
- Develop and maintain vulnerability scanning processes and tools to ensure a robust security posture.
- Manage and maintain security tools such as EDR, SIEM, password managers, IDS, and O365 security and compliance.
- Ensure all tools are up to date and properly configured.
- Collaborate with operational teams to identify and assess security risks.
- Develop mitigation plans and track risk management efforts.
- Develop procedures and automations to ensure compliance with certifications such as ISO 27001, HDS, and ENS.
- Coordinate audits and maintain adherence to these certifications.
- Follow and execute actions established in the Security Master Plan.
- Participate in reviewing and updating the plan as needed.
- Plan and coordinate penetration testing exercises to assess the security of systems and applications.
- Manage internal or external teams conducting the pentest exercises.
- Conduct regular audits to ensure access controls are correctly implemented and functioning.
- Review and update access control policies as necessary.
- Develop and participate in information security awareness campaigns for all employees.
- Create educational materials and conduct workshops and seminars.
- Continuously assess and improve security tools and processes.
- Research new technologies and security trends to implement improvements.
Requirements
- Advanced vocational training in Cybersecurity and/or Network Systems Administration
- A minimum of 2-3 years of experience in a similar information security role.
- In-depth understanding of information security concepts and practices.
- Experience with security tools and technologies across various domains: Perimeter security (FW, IDS), Endpoint/Server protection (EDR), SIEM, O365 protection.
- Knowledge of security regulations and certifications: ISO 27001, ENS.
- Ability to analyze and respond to security incidents.
- Excellent communication skills and ability to work in a team.
- Relevant security certifications, both general and vendor-specific, will be considered a plus.
- Ability to work in dynamic environments with multidisciplinary teams.
- Strong analytical and critical thinking skills.
- Attention to detail
- Multitasking and multiskills
- Ability to handle confidential information.
Benefits
- An opportunity for personal and professional growth, supported by high functioning teams and the exciting challenges that come with joining a company at the start of its growth trajectory.
- An inclusive and upbeat work environment: leave your suit behind... we’re a t-shirt and converse kind of place!
- More importantly, our company culture promotes diversity and inclusion. The personality and opinions of each of our team members are important and valid, and we aim to offer all employees a safe environment where they can be themselves and thrive.
- An environment free of bureaucracy and corporate constraints; a culture where your opinion is highly valued and appreciated.
- Flexibility: a great work-life balance.
- Offices in the center of Madrid and flexible working model.
- Professional growth: For training courses related to your role.
- Flexible compensation: you'll be able to include your monthly expenses in meals and transportation into your payroll.
- Company health insurance: we hope you won't need it, but just in case, we provide you access to the best medical network.
- Feedback and transparent culture: feedback is the breakfast of champions, and we take it seriously. We have a real-time and honest feedback culture, with monthly formal 1to1 sessions with your manager, a performance evaluation plan (with semestral evaluations) and monthly all-hands meetings to understand all the business information you need!
Job title
Job type
Experience level
Salary
Not specified
Degree requirement
Tech skills
Location requirements
Vulnerability Analyst role in BGS supporting government clients. Conduct vulnerability assessments and enhance cybersecurity protocols for effective mitigation strategies.
Analyst of Information Security focusing on Governance and Project Risk Analysis in software development. Join a dynamic team collaborating on security in tech projects.
Cybersecurity Analyst responsible for protecting corporate environments and managing security incidents. Collaborating with IT teams and providing strategic security communications.
Information Security Analyst role focusing on cybersecurity for a retail company based in Belo Horizonte. Tasks include managing security tools and monitoring incidents.
Intern engaging in cybersecurity projects with Intact, enabling a diverse team to innovate solutions. Opportunities for personalized professional development and collaborative industry impact during Summer 2026.
Cyber Security Analyst at GDIT handling forensic analysis, monitoring security violations in diverse locations. Requires 8+ years of experience and relevant certifications.
Intermediate Information Security Analyst for Identity Access Management at St. Elizabeth Healthcare. Supporting IAM and Information Security management to ensure robust security protocols.
Information Security Analyst at PointClickCare planning and executing security measures for technology infrastructure. Enhancing security operations and managing projects while collaborating with various teams.
SOC Senior Analyst managing a team of SOC analysts for 24/7 security operations. Working alongside Threat Intelligence, Engineering, and Incident Response teams to enhance the security posture.