We are seeking a highly motivated and detail-oriented individual to join our Information Security department as a (Senior) Information Security Expert and be part of our security operations in Europe. In this role, you will play a key part in implementing and maintaining our Information Security Management System (ISMS), managing the lifecycle of information security risks, and enhancing our overall security posture to safeguard our organization's assets. If you are passionate about information security, this is a great opportunity to grow in a dynamic and collaborative international environment.
WHAT YOU'LL BE DOING
1. Policy Development and Maintenance:
o Develop and maintain information security policies and procedures aligned with business needs and industry best practices.
o Ensure compliance with ISMS requirements.
2. Risk Management:
o Implement an information security risk framework to assess, monitor, and review risks.
o Maintain risk treatment strategies and collaborate with risk owners to manage the lifecycle of security risks.
3. Reporting:
o Deliver regular security reports to senior management and stakeholders, providing insights into security metrics.
o Report security incidents, policy violations, and audit findings, with recommendations for improvements.
4. Audit Management:
o Plan and oversee internal and external security audits.
o Manage remediation efforts for vulnerabilities and non-conformities identified during audits.
5. Security Incident Management:
o Lead investigations and responses to security incidents, ensuring containment, eradication, and recovery.
o Document incident details and contribute to post-incident reports for continuous improvement.
6. Security Training and Awareness:
o Develop and implement training programs to educate employees on security best practices and policies.
o Promote a security-conscious culture across the organization.
WHAT YOU'LL NEED
* Bachelor's degree in Computer Science, Information Technology, Engineering, Law, Economics, or related field.
* Solid understanding of information security principles and best practices.
* Proven experience (3+ years) in implementing information security programs and operating an ISMS.
* Advanced knowledge of security frameworks such as ISO 27001, CIS Controls, or NIST CSF.
* Experience in security risk management and audits, working with legal or compliance teams, and ensuring regulatory compliance (e.g., GDPR).
* Effective communication skills for conveying complex security issues and collaborating with stakeholders.
* Certifications like ISO 27001 lead auditor or implementer are advantageous.
* Willingness to travel and adapt to business needs.
WHAT WE OFFER
* Health insurance
* Hybrid working mode
* International career opportunities
* Integration into a global leading company emphasizing relationships, human values, and efficiency
* Training and personal growth opportunities within a global and innovative environment
Are you the Information Security Manager we are looking for? Apply now via LinkedIn Fujifilm Portugal or send your resume to ******. We look forward to your application!
ABOUT FUJIFILM
With European headquarters in Ratingen near Düsseldorf, Germany, a manufacturing facility in Tilburg, Netherlands, and offices across Europe, including our Portuguese headquarters in Porto, Fujifilm is a global organization with over 200 subsidiaries and approximately 80,000 employees. We provide innovative products and services in photography, medical systems, graphics, document solutions, optical devices, and biotechnology.
#J-18808-Ljbffr