Information Security Engineer

On behalf of our client, with offices in Malta, we are looking for a dedicated Information Security Engineer.

Our Information Security Engineer works across teams to ensure that both security and compliance are maintained at all times, protecting our business and customer data. They also engage with third parties to perform security assessments and audits. This role forms part of our Information Security Team, which is responsible for the continuous maintenance and improvement of overall security posture, technology risk management and regulatory compliance

Responsibilities

Assist in the design and implementation of the company information security framework
Continuously monitor and analyze security alerts, audit logs and reports
Conduct and coordinate penetration testing exercises and vulnerability assessments internally and with external testers
Perform regular auditing and investigations to identify potential or confirmed security incidents
Report and follow up on incidents with team members and escalate with management where necessary
Recommend mitigations and counteractions to risks, vulnerabilities and threats
Vet new applications and modifications with production owners and developers to identify possible risks
Drive, investigate, procure and eventually deploy operating and monitoring tools to enhance information security
Document and review policies and procedures including change, incident, patch and configuration management
Coordinate, document and participate in the development of the business disaster recovery and business continuity plans
Assist with the ongoing maintenance of regulatory requirements
Manage the security awareness training programme for employees while continuously providing security knowledge and tips to teams across our company
Monitor the effectiveness of information security processes and controls
Engage in the security community and keep abreast of information security incidents
Perform other security-related duties as necessary

Requirements

Degree in Computer Science, Information Systems or other IT related area
3+ years experience in a similar role
Experience working with and extensive knowledge of laws and regulations such as PCI DSS, EU Data Protection (GDPR) and the Revised Directive on Payments Services (PSD2)
Knowledge of operating system fundamentals (Windows, Linux), security technologies (firewalls, IDS/IPS, etc.) and associated security risks
Deep understanding of common coding security vulnerabilities
Ability to quickly adapt to changing environment and to work on own initiative with minimal supervision
Information Security Certifications (such as Security+, Ethical Hacking, CISA, CISM, CRISC) are considered an asset
To find out more about this great opportunity and many others, get in touch with the SpotOn Connections team. We have options for speakers of many languages across Europe with positions based in Athens, Thessaloniki, Limassol, Lisbon, Porto, Malta, and elsewhere.

We offer a 250 euro ‘refer a friend’ bonus for successfully placed candidates, so please send us any candidates that you feel might be suitable for this role.