Security manager azure (Santander)
hace 3 días
Santander
ppRemoto: Teletrabajo /ppGiesecke+Devrient is a global company that offers security technologies, both in the physical and digital world. Every day, billions of people benefit from G+D innovations in their personal and business lives. We develop, manufacture, and distribute products and solutions for the safeguarding of payment processes, identities, connectivity, and data. At G+D Mobile Security, a world leader in secure telecommunications systems, we are looking for a highly skilled and proactive Security Manager Azure to join our agile team. /ph3Key Responsibilities /h3ulliOwn and continuously improve our ISMS, policies, and security governance lifecycle. /liliAct as a trusted advisor to engineering, product, compliance, and customer‑facing teams. /liliLead security risk assessments, maintain the risk register, and drive quarterly risk cycles. /liliEnsure operational compliance with ISO27001:2022, GSMASAS, NIS‑2 and customer security requirements and support hands‑on configuration tasks. /liliCoordinate external and internal audits and assessments, ensuring evidence readiness and smooth execution. /liliLead vendor risk programs that strengthen our supply chain resilience. /liliReview product and architectural changes for governance alignment and secure design. /liliCollaborate with the Security Architect to connect governance with DevSecOps and cloud practices. /liliOwn Azure security posture, govern Microsoft Defender for Cloud findings, EntraID Conditional Access policies, Privileged Identity Management (JIT access), and quarterly access reviews. /liliSupport cross‑platform governance tasks, policy alignment, and shared risk register entries covering AWS and Azure workloads. /liliEnforce Zero Trust controls across cloud environments: continuous verification, least‑privilege access, and RBAC/ABAC enforcement. /liliGovern IaC and CI/CD pipeline security gates: review IaC templates for secrets management compliance, approve pipeline security controls, and validate rollback procedures. /liliProduce structured assurance reporting for management: metrics tied to the risk register, control effectiveness, and remediation tracking for findings from Defender for Cloud and AWS Security Hub. /li /ulh3What You Bring /h3ulliAt least 5 years in information security, risk, audit, or compliance, with a minimum of 3 years in a similar role (security management, cloud security governance, or ISMS ownership), ideally in regulated environments (telecommunications, banking, payments, SaaS). /liliStrong understanding of ISO27001, risk methodologies, and modern security frameworks. /liliSolid knowledge of security controls (IAM, third‑party risk, secure SDLC, cloud). /liliAbility to challenge and support engineering teams constructively. /liliSolid knowledge of Azure and AWS security controls. /liliPractical understanding of Zero Trust architecture principles and shared responsibility models across IaaS, PaaS, and SaaS. /liliFamiliarity with IaC security practices: secrets management, pipeline approval workflows, and dependency vulnerability handling. /liliExperience producing security assurance metrics and governance reports for senior stakeholders. /liliExcellent analytical, documentation, and problem‑solving skills. /liliFluent English; German or Spanish is a plus. /li /ulh3Nice to Have /h3ulliISO27001 Lead Implementer/Auditor, CISM, CISSP, CRISC, CCSP. /liliAZ‑500 (Microsoft Certified: Azure Security Engineer Associate). /liliAWS Certified Security – Specialty. /liliCCSK (Certificate of Cloud Security Knowledge). /liliFamiliarity with the Microsoft Cloud Security Benchmark (MCSB) or CIS Benchmarks for Azure/AWS. /li /ulh3What's great about working with us /h3ulliCulture and diversity: Join a people‑oriented environment with different nationalities and a great team spirit, flat hierarchies (everyone speaks to everyone). /liliEqual Opportunity Employer and LGBT+ friendly. /liliGeneral Collaboration: Work collaboratively with stakeholders around the globe. /liliCareer Development: Benefit from continuous training, coaching, and talent development programs. /liliSocial Benefits: flexible compensation (transport tickets, training, private insurance), etc. /liliOwn canteen: take a break with our breakfast and lunch service: choose between a wild range of menus, salad desk, and sandwiches service. /liliWork‑Life Balance: Flexible working hours with the option for remote work (M‑Th 8.30 – 17.30 and Fri 8.30 – 15.30; 3 days of remote work). /liliLocation: Sant Joan Despí. Easy communication by public transport. /li /ul /p #J-18808-Ljbffr