Security Analyst - Business Cybersecurity W/M (airliquidehr)

Job Description

Air Liquide Europe Business Services (ALEBS) was created in 2019 in Lisbon, Portugal with the mandate to provide financial services for Air Liquide European entities. In the space of 4 years, it has expanded to over 400 employees based in 3 office locations: Lisbon, Tomar and Guarda. The geographical scope was extended to include, besides the European affiliates also entities located in Africa, Middle-East and India, and the operational scope was extended and includes today not just Finance, but also Human Resources.

 

How will you CONTRIBUTE and GROW?

 

The Security Analysts ​​​supports the Information Security Officer to uphold Governance, Risk Management, and Compliance standards across Digital & IT​ environments. Security analysts are essential in maintaining the cybersecurity integrity of Air Liquide's IT and OT systems, as well as its sensitive data by ​ensuring adherence of Digital & IT operations to established ​Global security governance.​

This role integrates into a global cybersecurity organization characterized by a rich diversity of cultures, local and global operational requirements, and complex technological landscapes.

Note: This position is open for 3 locations: Lisboa, Tomar and Guarda

 

• Ensure alignment with Global Cybersecurity Framework 

  • Enforcement of Policies, Procedures, Guidelines, etc.

  • Through use of Deviation Action Treatment Plans (DTAPs) define risk, remediation plans and compensation controls to reduce risk

• Conducts Security Risk Assessments using Group Tools and Processes (Applications, Data & 3rd Parties)

  • Review cybersecurity risks for Vendor, Suppliers, Contractors and other Third-Parties  

  • Lead the process of critical digital asset compliance including stakeholder communications, reporting, review of evidence and  maintaining compliance score

  • Identify privacy and other regulatory requirements including AI evaluations

  • Assess compliance with Global Cybersecurity Framework throughout the data and application lifecycle (CDA’s, Global ERP systems)

    View Orignal JOB on: italents.net

• Cyber Crisis Management Response & Incidents

  • Assist in cyber crisis management response and/or cyber crisis simulations

  • Coordinates cybersecurity incident response with identified stakeholders  to define and minimize impact

• Supports Digital and IT Audits

  • Support internal and external audits by providing responses and evidence related to cybersecurity controls

• Leads Penetration Testing Efforts (IT & OT)

  • Lead rules of engagement, scope of work assessments and logistics for penetration testing engagements

• Act as Cybersecurity expert within the organization promoting cybersecurity concepts, issues and processes

 

Are you a MATCH?

 

• Minimum 4 years of experience in Cyber Security, risk management, and/or compliance

• Certifications in information security and/or cyber security like CISSP, CISM, CGRC

• Demonstrate understanding of risk management, IT controls and related information security standards

• Knowledge of security control frameworks and standards such as SOC2, ISO 27001, NIST, etc

• Experience securing cloud-based environments

• Experience with regulatory requirements - GDPR, PCI, Medical, FDA, DOT, etc

• Excellent written and verbal communication skills

• English C1

 

Our Differences make our Performance

At Air Liquide, we are committed to build a diverse and inclusive workplace that embraces the diversity of our employees, our customers, patients, community stakeholders and cultures across the world.

We welcome and consider applications from all qualified applicants, regardless of their background. We strongly believe a diverse organization opens up opportunities for people to express their talent, both individually and collectively and it helps foster our ability to innovate by living our fundamentals, acting for our success and creating an engaging environment in a changing world.