crigroup REMOTE Full-time 2024-03-21

We are seeking a dedicated and knowledgeable Security Champion (4698) to join our team and lead our efforts in maintaining a secure and resilient environment.

As the Security Champion, you will be responsible for promoting security best practices, identifying and mitigating security risks, and driving a culture of security awareness across the organization.

This role requires strong technical expertise, leadership skills, and a passion for cybersecurity.

Job Responsibilities

  • Serve as a subject matter expert on cybersecurity, staying updated on the latest threats, vulnerabilities, and best practices.
  • Lead the development and implementation of security policies, standards, and procedures to ensure compliance with industry regulations and standards.
  • Conduct security assessments, audits, and penetration testing to identify vulnerabilities and weaknesses in systems, applications, and infrastructure.
  • Collaborate with cross-functional teams including IT, engineering, and product management to integrate security controls into the development lifecycle.
  • Provide guidance and support to development teams in implementing secure coding practices and addressing security vulnerabilities.
  • Monitor security events and incidents, investigating and responding to security alerts in a timely manner.
  • Develop and deliver security awareness training and education programs for employees to increase awareness and understanding of security risks.
  • Work closely with third-party vendors and partners to ensure the security of outsourced services and products.
  • Conduct risk assessments and develop risk mitigation strategies to address security threats and vulnerabilities.
  • Stay abreast of emerging security technologies and trends, evaluating their potential impact and relevance to the organization

Job Requirements

  • Bachelor’s degree in Computer Science, Information Security, or related field. Master’s degree preferred.
  • Proven experience in cybersecurity roles, with a focus on security architecture, risk management, and incident response.
  • Strong technical proficiency in security technologies and tools, including but not limited to firewalls, intrusion detection/prevention systems, SIEM, and vulnerability assessment tools.
  • In-depth knowledge of cybersecurity frameworks and standards such as NIST, ISO 27001, and CIS Controls.
  • Experience with secure software development practices and methodologies (e.g., OWASP Top 10, secure coding guidelines).
  • Excellent communication and interpersonal skills, with the ability to effectively communicate technical concepts to both technical and non-technical stakeholders.
  • Strong leadership skills with the ability to influence and motivate teams to achieve security objectives.
  • Relevant certifications such as CISSP, CISM, CEH, or equivalent.
  • Ability to work independently and collaboratively in a fast-paced environment, managing multiple priorities and deadlines.
  • Proactive attitude with a passion for continuous learning and improvement in the field of cybersecurity

WHO ARE WE?

VASS (https://vasscompany.com/en/) is a leading digital solutions group of companies headquartered in Madrid, Spain, present in 26 countries in Europe, the Americas and Asia with more than 4,700 professionals

VASS helps large companies in their digital transformation process, developing and executing the most innovative and scalable projects, from strategy to operations.

All our growth comes from our talented people, passion for innovation, and a constant search for improvement, always the VASS way: “Complex made simple”.