An unusual chance for you to become a part of our diverse environment.
We are looking for an experienced Information Security Officer to enforce the CS group policies and procedures that protects our organization from all forms of security breaches.
You will be responsible for identifying vulnerabilities at the local level and working with our central IT department to resolve them, ensuring that our network and data remains secure.
IT Information Security officer
Local IT Information Security Officer isresponsible for assisting & coordinating with the Spain Data ProtectionOfficer the fulfillment of the General Data Protection Regulation (GDPR) andother related privacy regulations and internal policies, to ensure that CreditSuisse is aligned and compliant therewith.
IT Business Continuity Management Coordinator
As a country BCM coordinator, responsible for Develop, maintain / implement the group business continuity and disaster recovery strategies and solutions at the country level, including risk assessments, documentation of business continuity and disaster recovery procedures.
Your responsibilities will include :
Review reports from central teams which includes critical system security logs checks and intrusion attempts alarms
Monthly infrastructure checks in coordination with Spain and London teams
Monthly checks of RAI (Risk Action Items) with associated risk and remediation activities
Proactively, timely and quality completion of Risk Assessment and Advisory services, in line with CISO (Chief Information Security Officer) Governance Model
Adhere to global standards for incident and problem management for IT Security related Items in coordination with Credit Suisse Emergency Response Team (CERT)
Collaborate to consolidate a branch IT calendar to improve IT Risk Awareness around branch and global events and campaigns (Phishing Simulations, Security Presentations to new joiners, etc.)
Coordination and delivery of branch-wide risk-reduction initiatives i.e. USB Encryption, Data Leakage Prevention, Media Disposal, Email password protection
Ensure the quarterly GARS (Global Access Review System), PARS (Privileged Access Review), UAA3(User Administration Automation), AURA (Application Based User Rights & Administration) are available on time for the team leads / IT Head to review.
Make sure the profile descriptions of GARS from our local systems are easy to understand for the line manager while approving
In addition to the quarterly access review, coordinate the annual review with business on the access profiles for the meaningful applications.
Acting as a contact person for internal and external audits regarding IT and IT Security related items.
Ensure all audit and risk items are resolved on time. Contribute towards a significant reduction of outstanding branch vulnerabilities
Work together with Data Protection Officer to ensure correctness of internal documents of all Credit Suisse Entities in Spain when required by Data Protection Agency.
Coordinate GDPR related Incidents together with DPOR(Data Protection Officer Representative) and CRO(Chief Risk Officer)
Build and review SLA (Service Level Agreement) and CTA (Cost Transfer Agreements) based on the business & IT needs
Coordinate loss of premises, power downs, loss of IT, recovery plan reviews, voice recording reviews, IT risk self-assessments, access control reviews, IT risk reviews and disaster recovery tests for all critical systems
IT Security certifications i.e CISSP would be considered as the advantage
Experience in IT Security, Business Continuity Management & Data Protection domain (Knowledge of EU GDPR is must) with strong commitment and ability to work own initiative, but within corporate governance / policies
skills and capabilities required to effectively deliver outstanding results from initial investigation through to solution implementation
capability to identify and analyze the risk issues and opportunities systematically
Must be able to demonstrate good verbal and written communication skills on English & Spanish.
You relate confidently and adeptly to different individuals and groups, displaying flexibility with different working styles and ideas
Attention to detail, willingness to learn and must be proactive
Team player mentality is essential contributing to an effective team culture with strong delivery ethic
Can do attitude and self motivating
Maintain a positive approach to learning and professional development
Proven experience in all the three domains i.e IT security, Business Continuity Management area & Data protection
Thorough knowledge on EU GDPR regulation
Good user support experience required with clear interpersonal skills
Are you interested? Ms. Liseta Modino will be delighted to receive your application. Please apply via our online career portal!
Credit Suisse is an equal opportunity employer. Welcoming diversity gives us a competitive advantage in the global marketplace and drives our success.