Join the team

Search the open roles below and you can also register for our job alerts and let us tell you when we have the right role for you.

Loading...

Information security specialist (compliance)

Video Player
Loading...

Information security specialist (compliance)

  • Reference Number:
    COR0345
  • Office:
    Stockholm
  • Type of Employment:
    Full time permanent
About the role

 

The Group Security team is embarking on a mission of rapid maturity and require a highly motivated and talented information security specialist to help guide us on this journey.

This role will be within the Governance, Risk and Compliance (GRC) line and is for an information security specialist with an emphasis on compliance and risk management. As the role is within the GRC line, you will be required to assist the GRC function with its broad range of security responsibilities, however the emphasis on risk and compliance will mean you will lead the security compliance programme. As an information security specialist (compliance), you will be/become conversant with the many regulatory requirements for Kindred Group, engage with internal stakeholders ensure that they meet regulatory compliance and control risks associate with their environments and engage with external auditors/regulators to present our compliance evidence. 

 

What you will be doing?

 

  • Lead both internal and external audits to ensure compliance with all regulatory requirements. 
  • Manage compliance initiatives to ensure operational effectiveness with applicable laws and regulations, as well as internal policies and procedures.
  • Assist Legal and Technology organisations with all required compliance/security-related documentation. Ensure documentation is standardised, updated and organised. 
  • Participate in the development and implementation of new business initiatives involving compliance to ensure functionality required to support required compliance. 
  • Provide guidance to business functions on compliance/security-related matters. 
  • Coordinate audit-related tasks to ensure the readiness of managers and their teams for audit testing and facilitate the timely resolution of any audit findings. 
  • Initiate improvement activity to reduce risk, ensure compliance, lower cost, and improve quality within IT processes. 
  • Conduct/support periodic risk assessments and develop appropriate mitigation plans in support of deliverables. 
  • Refine and revise existing policies and procedures to support internal and external compliance programs. Author new policies and procedures and ensure adequate training for adherence by employees. 
  • Evaluate effectiveness of the internal security control framework and recommend adjustments as business needs change. 
  • Deliver findings, recommendations and remediation steps for all activities, in a clear, concise and audience-specific format. 
  • Perform periodic security risk assessments and advise business stakeholders on best practices to reduce risk and overall breach profile. 

Information Security specific:

  • Conduct information security assessments using industry accepted best practices and approaches to support enterprise business goals and objectives
  • Follow standard methodologies and develop new and innovative processes for delivering information security solutions
  • Focus on results and ability to work within tight timelines
  • Demonstrated ability to learn and apply critical thinking to a variety of situations
  • Contribute to the security awareness programme and develop a security aware culture.
  • Maintenance and development of the Kindred Group Information Security Management System (ISMS)
  • Build and maintain a network within the organisation through travel to other Kindred Group offices globally

 

What have you done?

 

  • Solid understanding of the evolving security and privacy controls environment, regulatory landscape and risk management techniques, principles and practices
  • Experience performing risk and compliance assessments and in-depth knowledge of industry standards and regulatory requirements (e.g., NIST, ISO 2700X, PCIDSS, GDPR)
  • Desirable: Knowledge of regulatory requirements for local markets within the gaming industry (MGA, UKGC, Spillemyndigheden etc.)
  • Experience and firm understanding of the development and implementation of information security policies, standards and related procedures
  • Ability to provide risk-based recommendations based upon the size and complexity of Kindred environment
  • Ability to educate Kindred associates of the risk implications associated with a particular business decision, and communicate the likelihood and impact of those decisions so Kindred Group can fully quantify those risks
  • Ability to translate complex technical information across all levels of the organization
  • Desirable: Knowledge of securing cloud based environments 
  • Desirable: Experience of working within a web based company. An understanding of the assets involved within a web based company and a working knowledge of classifying and protecting such assets
  • Strong facilitation skills and a clear ability to build strong relationships with business stakeholders at all levels, including executive managers and vendors
  • Demonstrated ability to work effectively with a team, delivering high performance and stakeholder buy-in across all business units.

Education / Qualifications/ Professional Certificates

  • Desirable: Relevant university degree
  • Desirable: One or more of the following qualifications and professional certifications: CISSP, CISM, ISO 27000 LA, CIA, CRISC, CGEIT

 

Application process

 

To apply for this role click on the "Apply for this role" button,complete the short web form and attach a CV with a cover letter stating why you would be suitable for the position and the recruitment team will be in touch shortly.

 

Learn more

For details on the benefits package available please click here

For more information about the recruitment process please click here

To find out more about our values please click here

For the latest events that we are attending or hosting click here

 
Share this page
Loading...
Close map
Location
Stockholm
Rådmansgatan 40, Stockholm, Sweden, 113 57
Loading...
Rate this page
Loading...

Job Alerts

If this job is not for you but you are interested in jobs similar to this, then click the button below to be the first to know about them.