Information Security Manager
Pliant Plastics Corporation
full-time
Posted on:
Location Type: Hybrid
Location: Helsinki • 🇫🇮 Finland
Visit company websiteJob Level
Junior
Tech Stack
CloudCyber Security
About the role
- Assist in maintaining the information security policies, procedures and guidelines
- Participate in the operational risk management process to identify, assess, treat and monitor information security risks, including coordinating ISO27001 information security assessment workshops
- Manage information security development projects to improve existing processes, and to develop new ones, including identifying and implementing new approved solutions
- Assess third party service providers in terms of information security risk, mitigations and controls
- Audit security controls and report non-compliance as part of the second line of defence
- Assist in auditing the environment against legal and regulatory requirements and industry standards
- Assist with the quarterly information security senior management updates and key risk indicator reporting
- Coordinate information security awareness initiatives
- Support our sales team in customer due diligence processes, including answering information security questionnaires from current and potential customers
- Support internal and external stakeholders in international security related questions
- Participate in internal and external audits, including gathering and presenting evidence, documenting findings, and planning remediation actions
Requirements
- Degree in Cybersecurity, Security & Risk Management, Computer Science, Information Systems, or a related field
- 1-3 years of experience in information security management, consulting, or audit
- Fluent written and English language skills
- General knowledge of information security standards and frameworks, including ISO27001:2022, PCI DSS 4.0.1, and SOC2
- A problem solving business mindset, with an interest in financial service offerings
- Ability to communicate and present topics clearly and effectively in a multicultural environment
- Ability to travel internationally, typically once every quarter
- Quick to learn, and ability to adapt to quickly changing environments
- Knowledge/experience in the financial industry, and implementing regulatory requirements in the EU, UK or US, including DORA, Operational risk management (Nice to have extra skills)
- Experience in various information security domains, including risk management, business continuity and disaster recovery, threat management, vulnerability management, identity and access management, asset management, secure software development, and cloud security (Nice to have extra skills)
- Experience in participating in internal and external audits (Nice to have extra skills)
- Experience in auditing third-party service providers (Nice to have extra skills)
- Additional languages would be an advantage, especially Finnish or German (Nice to have extra skills)
- Project management experience (Nice to have extra skills)
Benefits
- The opportunity to work in a growing team with big responsibilities that thrives on a strong exchange of knowledge and excellence
- Attractive remuneration
- Flat hierarchy and transparent communication in a relaxed, professional atmosphere
- Opportunity to develop your talent in a dynamic team with ambitious goals
- Flexibility and possibility to work remotely
- Company card with a monthly allowance for lunches, coffee, etc. with co-workers
Applicant Tracking System Keywords
Tip: use these terms in your resume and cover letter to boost ATS matches.
Hard skills
ISO27001PCI DSSSOC2risk managementbusiness continuitydisaster recoverythreat managementvulnerability managementidentity and access managementcloud security
Soft skills
problem solvingcommunicationpresentationadaptabilitymulticultural awareness