Cybersecurity Specialist (2) in Bucuresti

Take a step forward and let Edenred surprise you.Every day, we deliver innovative solutions to improve the life of millions of people, connecting employees, companies, and merchants all around the world. We know there are hundred ways for you to grow. With us, you will expand your skills in a multicultural, challenging, and dynamic environment. Dare to join Edenred and get ready to thrive in a global company that will offer you endless opportunities.Edenred is all about meritocracy. You come as you are, and you contribute. Indeed, the Edenred Group recognizes, recruits and develops all talents and singularities.We are committed to preventing all forms of discrimination and to providing all our candidates with equal opportunities regardless of their gender and gender expression, disability, origin, religious belief and sexual orientation or any other criteria.The Edenred Digital Center (EDC) in Bucharest, Romania is Edenred Group's largest Digital hub for strategic Tech projects.Context/ ROLEEdenred is implementing a worldwide strategy to improve IT security & compliance and protect the business. This strategy is sustained by 4 major pillars.1.  PEOPLE - Anchor cyberculture in the company with best practices, awareness, training2.  RULES - Enforce IT security policies applicable to the whole Group3.  DELIVERY - Implement global IT security projects & services to improve the security level4.  PERFORMANCE - Develop a culture of control & performance to assess the improvementsIn this context, Edenred is looking for a Cybersecurity Specialist for Global Technology eQuarter perimeter.SCOPE & Key ResponsibilitiesReporting to the Global Technology eQuarter Cybersecurity Leader, she/he will be an essential support in the team to improve the IT Security of the Global Technology directions according to our roadmap and strategy.This position is an opportunity for she/he to work on strategic applications and projects with many experimented and involved business and IT stakeholders. It will be key to demonstrate project management skills, have a clear understanding of the topics and propose organizational and/or technical solutions to reach the objectives.The Cybersecurity Specialist is responsible of:managing locally cyber security incident in close collaboration with business & technology stakeholders, plus Global CyberSOCfollow and support applicative teams in close collaboration with Centers Of Expertise to perform/maintain standard security controls :IT resilience: follow up DRP exercises (+ documents updates) and backups testsvulnerability management: plan and follow-up pentests, vulnerabilities remediation, vulnerability tools deploymentsidentity and access management: follow up access reviews and access matrixsupport applicative teams in bid and tenderssupport or drive Global cybersecurity projects (WAF activation, DLP, local admin cleanup ...)ensure Security by Design approach in critical and strategic applications and projectssupport the definition of cybersecurity roadmap & cybersecurity budgetspromote cybersecurity on applicative teams, managers and eQuarter staffKey Stakeholders: the Cybersecurity Specialist will mainly interact with internal stakeholders:IT Application Owners & IT Application Tech Leads Global Technology - eQuarter cybersecurity leader (N+1)Cybersecurity Centers of Expertise (AppSec, IAM, IT Compliance & Resilience, Cyber-Program, Security Operations)Other Global functions in Global Technology (infrastructure, network, workplace, architecture, data protection)Knowledge and SKILLSExperience:Significant experience within cybersecurity (3+ years)A good knowledge of at least 2 of the following domains is essential:  IT Security Operations (cyber incident & vulnerability management), Identity & Access Management (IAM), IT resilience (DRP & crisis management), cloud security, secure development best practices or payment solutions security.Language fluent in English both written and spoken.Soft skills:Pragmatic and solution orientedResult and performance oriented with a can-do attitude and be able to persuade/ influence others in the organization. Clear concise reporting, outlining key pointsWork in autonomyPassionate about functional and technical subjects Manage several requests and parallel work streams