Information Security Analyst

Job Title: Information Security Analyst

Type of employment: Permanent, Full time

Location: Remote from Portugal - you must be resident in Portugal in order to be considered. 

About ZigZag Global  

  
We are Returns! We’re an award-winning eCommerce returns business founded in 2015 by our CEO, Al Gerrie. We live to push boundaries of smarter returns and we want a thriving retail world where every customer experience is both delightful and considered, everything we buy can be loved and re-loved and preserving our planet is part of the fabric of how we shop.   

Today, more than 200 companies across 130 countries use our SaaS platform to help reduce the cost, friction, and impact of returns. Part of our leading Enterprise retail clients are Inditex (Zara, Bershka, Pull&Bear, etc.), Superdry, Sports Direct, The Hut Group, Swarovski, not to forget the Whitelabel partnership with the world’s biggest logistics businesses like DHL, Evri, SkyNet and FedEx.  

In March 2021, ZigZag was acquired by Global Blue, an industry leader in tax free shopping. Strengthening our reach across the global retail industry and allowing us to continue to do what we do best, help retailers manage and re-sell their returns.   

At ZigZag, we embody a set of values that lies at the core of our workplace culture. Our dedication to the Start-up Spirit, Human Heart and Grown-up Mindset defines our collaborative spirit and shapes our collective success. 

Person’s profile 

We are in search of a Information Security Analyst who resonates with our Purpose, Vision, and Values and is eager to contribute to a team where these principles are more than words – they guide our actions. Your commitment to fostering positive relationships, whether with colleagues or customers, will help create an environment where everyone feels appreciated and valued. 

As the inaugural Information Security Analyst at ZigZag, you will be instrumental in defining, implementing, and managing our cybersecurity strategy. We are looking for a self-starter with a proven track record of setting up cybersecurity frameworks and protocols within a SaaS environment. Working closely with cross-functional teams, you will identify and mitigate potential security risks, ensuring the confidentiality, integrity, and availability of our systems and data.

Responsibilities:

1.    Cybersecurity Strategy Development:

·       With the CTO develop and implement a comprehensive cybersecurity strategy tailored to the unique needs of our SaaS business.

·       Establish and enforce security policies, standards, and procedures.

2.    Security Infrastructure Setup:

·       Make recommendations to enhance our security infrastructure, including firewalls, intrusion detection/prevention systems, and endpoint protection/management.

·       Configure and maintain security tools and technologies.

·       Make recommendations to product for security enhancements to our platform

3.    Incident Response and Threat Management:

·       Develop and maintain an incident response plan for cybersecurity events.

·       Manage our program of regular security assessments and vulnerability scans.

·       Maintain a risk register of active issues and resolution plans

4.    User Training and Awareness:

·       Develop and deliver cybersecurity training programs for employees to enhance awareness and adherence to security best practices.

·       Monitor and enforce user compliance with security policies.

5.    Compliance and Regulation:

·       Stay abreast of cybersecurity regulations and industry best practices.

·       Ensure the organization's compliance with relevant cybersecurity standards.

Requirements

• Proven experience as a Cyber Security Analyst, preferably in a SaaS or technology-driven environment.
• Strong understanding of cybersecurity principles, technologies, and best practices.
• Experience in setting up and configuring security infrastructure.
• Familiarity with relevant regulatory frameworks and standards.
• Excellent communication skills and the ability to collaborate with cross-functional teams.
• Relevant certifications such as CISSP, CISM, or CompTIA Security+.

Benefits

What benefits you’ll receive:  

• Competitive salary 
• 22 days holiday + bank holidays 
• Remote working 
• Flexible working hours 
• 9,17€ day meal vouchers 
• 10% L&D time 
• Annual L&D budget 
• Access to learning platforms 
• Health Insurance 

   
Passionate and Collaborative Minds Wanted: 

You’ll join a brilliantly diverse group across Europe. We believe a business is strongest when its teams are both inclusive and diverse. We recognise and aim to challenge everyday biases, remove obstacles to inclusion and ensure all our people can thrive and be themselves.  

If you are passionate about making a positive impact, caring for both colleagues and clients, and embracing a collaborative mindset, we invite you to apply. Join us in building a workplace where every contribution matters, and each team member feels a profound sense of belonging and value. 

If you are interested, please send your CV in English. 

Your application will be reviewed with strict confidentiality. Only the short-listed candidates will be contacted for an interview. Providing your personal data, you explicitly agree that it will be processed for the purpose of recruiting and for the purpose of the possible signing of a labour contract and will be stored and operated by “ZigZag Global” EOOD in their capacity of the personal data controller and personal data processor in accordance with the effective legislation. Please have in mind that with this you give permission for your resume to be shared with other parties of the ZigZag Global Group.