Information Security Consultant
Barcelona, ES
Zurich Insurance
Our opportunity
As an Information Security Consultant within Group Cyber and Security you will work with local, regional, and global IT, Service Providers and Zurich business functions to manage compliance, information security and IT risks to support the Business objectives of the Group.
As part of this role, you will provide subject matter expertise and consultancy to projects and initiatives of varying size and complexity, with a focus on embedding “security by design” whilst supporting innovation. You will also provide Information Security advisory and Information Risk based consultancy through multiple channels within Zurich.
Your role
As an Information Security Consultant your main responsibilities will involve:
- Provide consultancy to major projects and services on effective mitigation of risks, and controls implementation.
- Assist with complex projects to identify business and technical security requirements, design security controls and test their effectiveness.
- Apply and support IT security, risk, and compliance technologies.
- Carry out control assurance for IT Service providers.
- Provide regional support and co-ordination for audit and other assurance processes.
- Contribute to IT Security/IT risk frameworks that serve as a basis for regulatory compliance, internal control processes and management of IT Security and IT risk.
- Initiate and maintain IT Security and IT risk management procedures.
- Ensure compliance with IT related policies and regulatory requirements; develop plans to remediate compliance gaps.
- Facilitate and take part in regular global IT Security and IT risk/control assessment initiatives.
- Support security event monitoring and incident response processes
- Work with the adoption of new Digital technologies and platforms across Zurich
Your Skills and Experience
As an Information Security Consultant your skills and qualifications will ideally include:
- Bachelor’s Degree or equivalent in Computer Science or related subject
- Understanding of security requirements for cloud environments (predominantly PaaS & SaaS); experience with O365, Azure & AWS would be an advantage.
- Familiar with the concepts of Security by Design, DevSecOps and Infrastructure as Code
- Experience with technical components of a network infrastructure
- Good understanding of Information/IT governance and risk management
- Excellent communication skills, being able to take part in meetings and provide expert advice.
- Proven experience with common information security controls / management frameworks, such as the NIST Cyber Security Framework and ISO27000
Preferred Qualifications
- Professional Security Qualification - CISSP, CCSP (or other similar cloud security qualification)
- Knowledge & Experience of working with new digital technologies & platforms.
- Experience as an Information/IT Security/Risk Consultant for International Companies
- Familiar with Agile project management methodologies
Additional Information
As well as competitive salary and a yearly bonus we offer benefits package which includes:
- Option to work remotely within Spain even up to 100% - you choose
- Over 300 euros net to set up your home office and additional monthly home office allowance
- Flexible working hours
- Wide range of internal and external trainings
- Free English, German and Spanish classes depending on the needs
- Ticket restaurant
- Life Insurance
- Collective Life Retirement Plan - after 1 year in the company
- Referral bonus if you bring other talented people like you
- Special banking and insurance conditions
- Exclusive Employees discounts
Primary work location is Barcelona, Poblenou. Please apply with your CV in English by clicking on the button “Apply online”.
Who we are
Looking for a challenging and inspiring work environment where you can make a difference? At Zurich millions of individuals and businesses place their trust in our products and services every day. Our 53,000 employees worldwide form the basis of our success, enabling, businesses and communities to face a world of risk with confidence. Imagine if you could help people do this all over the world. You’d give them confidence and reassurance by protecting what they love most. It’s a big challenge, but you will be supported by a world-class team who believe in helping you to reach your full potential and deliver on our promises.
Diversity & Inclusion
At Zurich we are an equal opportunity employer. We attract and retain the best qualified individuals available, without regard to race/ethnicity, religion, gender, sexual orientation, age or disability.
So be challenged. Be inspired. Help us make a difference.
You are the heart & soul of Zurich!
At Zurich, we like to think outside the box and challenge the status quo. We take an optimistic approach by focusing on the positives and constantly asking What can go right?
We highly value the experience and know-how of our employees and offer a wide range of opportunities across business areas to encourage you to apply for new opportunities within Zurich when you are ready for your next career step.
Let’s continue to grow together!
- Location(s): ES - Barcelona
- Remote working: Yes
- Schedule: Full Time
- Recruiter name: Raquel Martin Blanco
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Agile AWS Azure Banking CCSP CISSP Cloud Compliance Computer Science DevSecOps Governance Incident response ISO 27000 Monitoring NIST PaaS Risk management SaaS
Perks/benefits: Career development Competitive pay Flex hours Home office stipend Insurance
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Cybersecurity Analyst jobs
- Open Senior Cybersecurity Engineer jobs
- Open Security Operations Engineer jobs
- Open Information Security Officer jobs
- Open Principal Security Engineer jobs
- Open Senior Cyber Security Engineer jobs
- Open Information Security Specialist jobs
- Open Senior Product Security Engineer jobs
- Open Chief Information Security Officer jobs
- Open IT Security Engineer jobs
- Open Senior Penetration Tester jobs
- Open Cyber Security Architect jobs
- Open Staff Security Engineer jobs
- Open Cyber Security Specialist jobs
- Open Security Specialist jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Senior Network Security Engineer jobs
- Open Cybersecurity Consultant jobs
- Open Senior Information Security Analyst jobs
- Open Security Consultant jobs
- Open IT Security Analyst jobs
- Open Security Operations Analyst jobs
- Open Manager Pentest H/F jobs
- Open Information Security Architect jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Agile-related jobs
- Open Network security-related jobs
- Open Risk assessment-related jobs
- Open Analytics-related jobs
- Open SOC-related jobs
- Open CISA-related jobs
- Open ISO 27001-related jobs
- Open GCP-related jobs
- Open IAM-related jobs
- Open Application security-related jobs
- Open Pentesting-related jobs
- Open Vulnerability management-related jobs
- Open Threat intelligence-related jobs
- Open DevOps-related jobs
- Open DoD-related jobs
- Open Security Clearance-related jobs
- Open APIs-related jobs
- Open CEH-related jobs
- Open Security assessment-related jobs
- Open SaaS-related jobs
- Open Malware-related jobs
- Open Kubernetes-related jobs
- Open Java-related jobs
- Open EDR-related jobs
- Open PowerShell-related jobs