Partner with technology Teams to establish an Architecture that meets SWA technology standard.
Partner with the SRE team to design a secure infrastructure.
Develop and ensure security guidelines and best practices are being followed via technical controls, automation, and auditing.
Maintain policies and create automation to ensure all systems follow regulatory security standards and compliance.
Regularly perform penetration testing and coordinate with engineering teams to address vulnerabilities.
Participate in architecture and design reviews to mitigate security and privacy risks Create hardening standards for our infrastructure to minimize attack vectors.
Coordinate compliance audits and assist auditing teams in the automation and collection of evidence.
Audit and deploy security tooling for code, network, and resource intrusion detection systems.
Triage security alerts and take appropriate action.
Lead incident response efforts and documentation.
What we look for:
Min 3 years’ relevant experience, a holder of CISSP / CISM / CISA Certificate or similar is preferred.
Solid knowledge of various information security frameworks
Expertise in data protection laws and practices
Experience in working in an international and multicultural organization.
Understand core business processes and associated technical solutions.
Strong grasp of technology – IT systems, cloud technologies and information data security, as well as business applications (ERP, HRIS, Finance, Retail solutions)
Good communication skills:
Ability to raw multiple parties into a dialogue
Ability to educate a non-technical audience about various security measures and Data Protection requirements.
Ability to work in a multinational, multicultural environment multigeneration, using the latest communications methods and with adapted / hybrid work environments.
Proactive, able to work independently and under pressure with good organizational and time management skills