Security Compliance Analyst

Full-time remote work

Safetyheads

We are a Software House with experience in cybersecurity.

We specialize in creating mobile and web applications as well as delivering IoT solutions. We work mainly with the industrial sector, IT companies, and e-commerce.

We also have our own unique product 5Days. It is the Low-code platform designed as the fastest and most cost-effective tool for building enterprise-class IT solutions.

We are looking for an experienced Security Engineer (Tech Lead), who will work on the project for the FinTech industry.

This application puts all user’s finances at their fingertips, so they can make smart choices on how to spend, see and save their money. They can use every credit and debit card they add to the app, track what they’re spending and saving, at home or abroad, earn cash back, and manage their money with game-changing tech including Go Back in Time and Anti-Embarrassment Mode. All with additional security to help keep your money safe.

The role requires someone that has previously worked within a global team and has prior experience working in a PCI/GDPR/DPA environment.

Key Accountabilities are: develop, maintain, review, and update information security policies, lead audit, attestation, and assurance activities, ensuring all reviews are scoped accordingly and resulting actions are managed to resolution, and develop reporting and measurements to demonstrate adherence to regulatory requirements, support the supplier onboarding and due diligence program by conducting 3rd party security risk assessments, assist with the development and ongoing management of the security awareness program and InfoSec training, reporting regularly to management on the status of assigned activities including issues, risks and remediation actions.

 

Must have

  • 2 – 5 years experience in information security governance, risk, and compliance (GRC) or security auditing
  • Experience in establishing and operating a proactive and continual compliance program, including PCI, ISO 27001, and SOC2.
  • Control mapping and Gap analysis experience
  • Experience with controls and compliance in cloud / SaaS environments
  • Comfortable building scripts and/or tools to automate tasks
  • Professional security certification preferred (e.g, CISA, CRISC, CISM, CISS)

 

Nice to have

  • Knowledge of JIRA & Confluence
  • Great Communication skills

Why it’s worth joining us?

Health care

Individual training budget

Fully remote work

Flexible working hours

Unique working atmosphere

Family-friendly community

Knowledge sharing with developers with extensive experience

In-house training programs (Angular, IOS, Android, CyberSecurity Leadership)

Recruitment process

1
2
3

HR call

After we receive your CV you will have a short conversation with HR, during which we will initially tell you about SafetyHeads, the project and the role that interests you, and we will gladly hear about your expectations.

Online meeting

We invite you to a 1.5-hour meeting with HR and a technical person, during which we will get to know each other better, talk about your experience and the possibilities we have for you.

Meeting with the customer

The client is also very happy to meet you. There will be one or two interviews with him, if necessary.

Feedback

We will get back to You with the results of the recruitment regardless of the outcome. Hopefully it will always be good news.

Join our team

We're hiring

Apply now

We use cookies on our website, hope you don’t mind.

Read moreAgree