About Company
Birlasoft, a global leader at the forefront of Cloud, AI, and Digital technologies, seamlessly blends domain expertise with enterprise solutions. The company’s consultative and design-thinking approach empowers societies worldwide, enhancing the efficiency and productivity of businesses. As part of the multibillion-dollar diversified CKA Birla Group, Birlasoft with its 12,000+ professionals, is committed to continuing the Group’s 170-year heritage of building sustainable communities.
Job title: IT Security Officer I&O
Duration: 6 months extendable
Location - Madrid (hybrid mode)
Type: Sub-contractor
Summary of the job
The Security Officer for Infrastructure & Operations helps deliver on the vision of I&O Security Management and is accountable for information security and compliance within the Global Infrastructure & Operations (GIO) scope. The role will assist in the development of long-term security strategies and manage its execution to ensure the IT services and functions meet all mandated security standards & policies and effectively assess & control security risks
Main responsibilities
Risk management
Perform Risk assessments on : new projects, assets or Tools
Manage Risk Register on compliance exemptions and risk acceptance (including expiry and renewal)
Collaborate with the Security MSPs and the rest of security officers from other regions to deal with global emerging threats.
Compliance management
Support GRC global officer on specific tasks related but not limited to:
Evidence collection and recording (MCS & Audits)
Audit support
Development and management of control processes
Post Audit action tracking
Change and project support
Provide Security Reviews & Approvals on SNOW changes
Security representation in zone CAB/E-CAB when required
Security reviews of new demands and project charters:
I&O projects (Global or Regional)
IITSC projects (with I&O components)
Support/drive Security initiatives (Global or Regional)
Specific work experience:
10+ years of experience in IT Security and other operational/compliance IT roles
Broad technical security knowledge of IT services, technology and IT solutions.
Specific expertise in one or more of the following would be a plus:
Cloud Security → CCSP / GCSA
Network Security → CND / CCNP / CCNA Security / CEH
System/Infrastructure Security → CISSP / CISM / CISA
Industrial Technology (OT) Security → CDSE / GICSP / ISP / ISOC
Extensive experience in delivering IT security projects, assessments and audits
Practical experience of risk management
Experience in implementing Policies and Procedures in compliance with Information Security Management System Standards (ISO 27000 series)
Strong knowledge of regulatory requirements and security policies and standards
Broad knowledge of IT services, Technologies and IT solutions
Work experience in a related industry setting (cement, aggregate, ready-mix)
Strong decision making skills and ability to challenge decisions of others
Good negotiation skills with vendors, contractors and other suppliers
Read Full Description