As the business is growing so is the effort required to design, implement, execute, review and refine security practices throughout the organisation.
Documentation, third party auditing and certification are important work areas as they allow our organisation to continuously improve and they provide our global customer base assurance that our company and our service can be trusted to look after the most important data of our customers.
As an Information Security Engineer your main areas of work will be assisting the existing team with:
You need to have a good understanding of information security in general and a reasonably strong technical foundation to understand the threats, risks and mitigation that can apply to building and operating a cloud service trusted to hold the data of customers across the planet.
You are able to find, read and understand regulatory and legal texts and compare our solution and our security posture to requirements in such texts. Such comparisons can form the basis for changes in product, processes or contracts with customers.
You understand the difference between “risk management” and “risk avoidance”.
You have sufficient technical insight to read and understand the Turing Award paper “Reflections on Trusting Trust” and you can see how this is relevant in a broader setting in today connected world.
Desired skills are:
Bonus skills are:
We are looking for a dedicated individual with potential — industry experience is a big plus.