Information Security Audit Coordinator - Amadora, Portugal - Siemens Energy

Siemens Energy

Empresa verificada

Amadora, Portugal

há 1 semana

Postado por:

João Santos

Recrutador de beBee

Descrição

A Snapshot of Your Day

:

As an Information Security Audit Coordinator
, you'll play a vital role
in safeguarding our organization's digital assets and ensuring exacting compliance
of security standards. Your responsibilities include being responsible for audit activities
, ensuring alignment to regulations, and actively contributing to risk management
within our organization.

This position provides hands-on experience
in the realm of cybersecurity, serving as the second line of defense
. It's an ideal steppingstone
for those aspiring to grow in the fields of auditing and cybersecurity.

On a Day-to-day
basis, you'll collaborate with colleagues from a diverse set of backgrounds, engaging in discussions about cyber risks
. Your tasks will involve crafting comprehensive reports
and delivering persuasive presentations
that highlight areas for improvement in identified risks. By optimally communicating the importance of mitigation
, you'll empower customers to take informed actions.

How You'll Make an Impact

:

- Audit Coordination**:

-
Identify stakeholders needed in announced audits

:

-
Coordinate audit engagements and collaborate with audit teams and collaborators

:

-
Participate in meetings and lead audit participants during audit fieldwork

:

-
Ensure adherence to audit schedules and quality standards

:

-
Collect relevant information and support documentation for audits

:

-
Evaluate the accuracy and completeness of the data

:

-
Review audit reports and analyze findings

:

-
Provide awareness of audit results to relevant parties

:

-
Track audit findings and avoid overdue remediation.
-
InfoSec Project Collaboration

:

-
Planning and performing 2nd line of defense security assessments regarding IT and OT infrastructures, products, solutions, services and their related processes and controls

:

-
Discussing on eye-to-eye level with security architects and solution providers to challenge their security assumptions and requirements as well as to improve their solutions whenever vital

:

-
Identifying root causes of findings and assisting business and other functions in developing improvement measures

:

-
Contribute to the development of cyber assessment plans.
-
Team Collaboration and Communication

:

-
Foster teamwork and effective communication within the team.
-
Experience

:

-
Junior or mid-level

What You Bring

:

- University degree in an Information Technology Engineering area is a must.**:

Certificates such as ISO 27001 auditor, CISSP, CISA and CISM are a plus

:

-
3+ years of professional experience in any of the following is a plus: IT audit, information security, cybersecurity, IT risk management, IT GRC, IT general controls, or development of industrial IT services and solutions

:

-
Knowledge of ISO 27001 and some of the following is a plus: cybersecurity, IT governance, IT audit, COBIT, OT security (IEC 62443), secure software development lifecycle

:

-
Additionally, knowledge of some of the following is a plus: SCADA/ICS, cloud security, agile methodologies, mobile security, data protection, ITIL, network security

:

-
As you act in an international environment, you are willing to travel (15% max.) and therefore demonstrate business-fluent English language skills (English on a B2 or C1 level). German and Spanish language skills are a plus

:

-
You have very good communication and presentation skills as well as are willing to learn about the latest trends in Cybersecurity and keep up to date in a continuously challenging environment

:

-
Light programming skills are a plus

:

-
Strong leadership and organizational skills

:

-
Ability to collaborate optimally with multi-functional teams

:

-
Furthermore, you bring multicultural sensitivity, innovative thinking with proven analytical skills

:

About the Team

:

We are a worldwide team composed by people of all genders from different cultures, backgrounds and expertise focused on helping our company identifying and managing its cyber risks as well as cyber securing its assets, products, solutions and costumers' infrastructure.

Since we are in a dynamic environment, we are willing to deal with changes and to dive deep into the unknown sometimes. Therefore, we support each other developing ourselves, and we are open to every kind of new insights and eager to test and validate them in order to succeed in this environment.

Who is Siemens Energy?

At Siemens Energy, we are more than just an energy technology company. We meet the growing energy demand across 90+ countries while ensuring our climate is protected. With more than 92,000 dedicated employees, we not only generate electricity for over 16% of the global community, but we're also using our technology to help protect people and the environment.