Overview
Information Security Analyst – GRC Jobs in Lisbon, Portugal at Defined.ai
Title: Information Security Analyst – GRC
Company: Defined.ai
Location: Lisbon, Portugal
Description
Who is Defined.ai? Well, from a technical point of view, we leverage the power of a global crowd to provide some of the world’s biggest companies with the high-quality data they need to power their artificial intelligence. We’re instrumental to the progression and development of artificial intelligence and we couldn’t be prouder or more inspired to be involved in an industry that is changing the world.
From a personal point of view, we’re a group of big thinkers, high achievers and creative problem solvers. We bond over our shared love of software engineering, data science, and strong coffee. We like online gaming, running marathons, and team drinks. We celebrate authenticity and diversity and we’re invested in what we do. Our mission? World domination, obviously!
What will you do?
Join our awesome Cybersecurity Team as an Information Security Analyst with emphasis in GRC (governance, risk and compliance) to embrace a unique and challenging project;
Ensure security-related activities and processes are aligned with the organization’s strategy and business goals, under the supervision of the Manager of Cybersecurity;
Actively participate and contribute to strategic internal initiatives sponsored by the Cybersecurity team regarding information security;
Support internal/external audit processes and evidence collection initiatives, as well as security-related client inquiries and assessments, while collaborating with key internal teams such as IT, Architecture, DevOps, and Sales / Customer Support.
Help identify and evaluate relevant international standards, controls, compliance frameworks, and legislation/regulation for the organization, recognizing internal gaps and areas of improvement.
Help develop and establish an organization wide InfoSec culture by participating in security awareness and personnel training activities.
Support the continuous development of our Information Security Management System (ISMS), by participating in the development and implementation of effective security policies, standards, guidelines, and procedures.
Participate in the maintenance and continuous improvement of our ISO 27001 certification.
Who are we looking for?
We’re looking for someone that’s passionate about Information Security and has 3-5 years of experience in similar functions. This person has a few years of experience in these domains and wants to continue growing their knowledge in this field. They are thrilled to embrace a unique challenge at a leading AI company and are eager to share their experiences and knowledge, as well as learn and collaborate with a team of high-caliber cybersecurity professionals. Our chosen candidate is determined, a strong critical thinker, and passionate about helping us achieve our goals.
Requirements:
3-5 years of proven experience working in information security either for a known organization with a technological background, a security consulting firm/services provider or for a Big 4 consulting firm with equivalent job responsibilities.
Academic education in Computer Engineering or similar fields of study, mainly in reference universities.
Experience in performing information security assessments, both for internal systems and as part of client inquiries related to sales engagements or ongoing business relationships.
Knowledge of international information security standards and frameworks such as ISO 27001/27002, ISO 17799, NIST 800-53/NIST CSF, …
