As an ISO at Finoa, you will work within the Information Security team and assist in maintaining the security and integrity of our organization’s information systems. The ISO will work closely with the Chief Information Security Officer (CISO) to implement and enforce security policies, procedures, and best practices across the organization. Responsibilities will include assisting in the development and maintenance of security policies and procedures, conducting risk assessments, monitoring security incidents, and providing support for security awareness training programs. The ideal candidate will have a strong understanding of information security principles, regulatory frameworks, excellent communication skills, and the ability to work collaboratively with cross-functional teams.
Please note: While this position can be performed remotely, we will only be screening applicants who are resident in either Portugal or Germany.
Assist in the development and implementation of information security policies, procedures, and standards.
Conduct risk assessments to identify potential security vulnerabilities and recommend mitigating controls.
Assist in the development and delivery of security awareness training programs for employees.
Collaborate with cross-functional teams to ensure that security requirements are incorporated into new projects and initiatives.
Stay up-to-date on emerging threats and security technologies to continuously improve the organization’s security posture.
Participate in audits and compliance assessments to ensure adherence to regulatory requirements and industry standards.
Provide support and guidance to employees on security best practices and procedures.
To be considered for this position, you should possess the following qualifications and attributes:
Degree in Computer Science, Information Security, or equivalent experience.
Strong understanding of information security principles, standards, and best practices.
Experience with security tools and technologies such as AWS, EKS, WAF, MDM, SSO etc.
Excellent communication and interpersonal skills, with the ability to effectively communicate technical information to non-technical stakeholders.
Ability to work independently and collaboratively in a fast-paced environment.
Knowledge of frameworks such as EBA Guidelines, BAIT, MaRisk and GDPR is preferred.
Strong analytical and problem-solving skills.
Fluency in English.
German is a plus.
Join our team and help us safeguard our organization’s sensitive information and assets against cyber threats.
Competitive salary
Flexible hours, hybrid work setup from both the Berlin and the Porto office
25 days annual paid leave
Urban Sports Club membership
Internal Crypto Academy