Information Security, Risk and Compliance Consultant

Do you want to join the Adecco Group?

From the Adecco Group we are looking to incorporate a figure of Information Security, Risk and Compliance Consultant.

Your main mission will be responsibility IT Security for Outsourcing Digital Solucions provided to clients.

Your main functions:

1. Process & Standard definition

- Define, document & implement feasible IT security standards for outsourcing solutions based on guidance from GIA, IT Security and Outsourcing Business (Technical, Office, Finance, Legal, etc)
- Train respective stakeholders on procedures and IT Security Requirements
- Contact point for internal & external audits and owner of remediation actions
- Review the contractual agreements established with external providers, to guarantee that minimum security clauses are included and that the necessary reporting controls are implemented.
- During the design solution phase, include a formal Third-Party Information Security Assessment (i.e. TPISA) to better assess inherit risks of the provider/solution, and formally perform the respective Business Impact Analysis (i.e. BIA).

2. Carry out the periodic controls that guarantee compliance with defined standards:

- Ensure correct implementation of standards by executing previously defined controls
- Controls might be relayed to Access rights review, Contract Review etc
- Execute recurring controls to guarantee the adequate update of security patches in the applications park and terminals in AO
- Review annually that the controls reported by external providers are aligned with the security requirements of the Group Policy and that there are no deficiencies that affect the outsourcing operation.

3. Execute daily IT security actions:

- Expertise lead for security definition and reviews of new Outsourcing solutions and implementations for specific client services as part of pre-sales. Participate in Technology Onboarding Process.
- Track IT Security Related Audit Findings
- Review service contracts to ensure IT compliance
- Supervise IT Clauses into Customer Contracts.
- Participate in Global IT Security initiatives and projects.
- Ensure Detected Applications Vulnerabilities are managed and solved
- Analyze and Review Business Requests regarding Software and non standard access.


4. Provide IT Project Management support:

- IT Project Management Support. Ensure IT Requirements are met in Ad-hoc Developments / Outsourcing IT related Projects.
- Provide IT Guidance to attend Local Customer non standard requests.

We are ideally looking for someone with a master- s degree in IT (4/5 years - degree).
Minimum 5-7 years - overall experience.
Minimum of 5 years- experience in a similar role within a Global Organization.
Certifications: ITIL V3, CISSP, CISA, CISM or similar certification are preferred