Job Description - IT Security & Governance Specialist (MER0003CWC)
IT Security & Governance Specialist Group : Mercedes-Benz Group AG
Description
IT Security & Governance Specialist is responsible for IT security and Governance related areas at MBFSK and MBMK both. Defining the security strategy for the company and leading the company to a setup where security related regulations from local market and MB regulation lead to a proper setup of guidelines and work instructions together with Compliance and Legal Departments. Preparing decisions, presenting alternatives and advising the CIO/CISO for all compliance/security decisions (e.g. information protection committee, leadership meetings) including the creation of supporting documents. Align with the regional and HQ security teams and executing the MB security strategy in the MBFSK and MBMK context. Furthermore, he/she is responsible for the IT security portfolio and the related operative planning, budgets and vendor management within the IT department.
Security Framework and Security Controls Define the security strategy with RISO (Regional Information Security Officer) to align with regional and global MB security goals. Align the strategy with MBFSK & MBMK ITM Define policies & procedures and setup processes to achieve a sustainable management of information security controls. Also define & execute processes for implementing and maintaining controls Protect applications by defining access privileges, control structures and resources Leading IT Security Communication & Report Regular communication within and support for the IT team to ensure IT security guidelines are aligned and executed in the team Report to CIO and CEO for any non-compliant topics and suggest best practices based on the local, regional and global security standards. Security consultant Consult the business and IT in regards to security policies and procedures when implementing new demands or application enhancements Identify and track vulnerabilities on the application landscape Actively support the data protection officer to ensure data protection policies are implemented in the application Proactively offer support and assist members of other teams Assisting Infrastructure & IT Security Team manager in order to plan and implement corporate and local tasks.
Responsible for individual development as senior specialist and for next step Qualifications
Required Educational Background A first degree in Computer Science or other acceptable degrees include information technology, IT security, management information systems, software engineering and networking. Professionals who possess a masters degree will have an advantage. Professional Experience Preferred ---
Minimum 7 years of IT Security and/or IT experience Experience how to apply security strategies and setup a working Required Specific Knowledge and Capabilities Security experience in the financial services industry Experience in IT Security Audits and Financial services compliance Advanced English communication skill Strategic thinking Leadership experience (direct or functional leader) Understanding infrastructure and application technologies ISO27001, CISA, CISSP, CPPG or related certificates are required Organization
#J-18808-Ljbffr