Service Security Analyst

Who are we?

Capgemini is a global leader in partnering with companies to transform and manage their business by harnessing the power of technology. Guided daily by our purpose of unleashing human energy through technology for an inclusive and sustainable future, we are a responsible and diverse organization of 340,000 team members in nearly 50 countries. With over 50 years of heritage and expertise, we are a trusted partner to address the full breadth of our clients' needs-from strategy and design to operations-leveraging the innovative world of cloud, cybersecurity, infrastructure data, AI, connectivity, software, and platforms.

We have one global role, Information Security & IT Risk Analyst, available in Madrid (Spain) reporting to the Information Security Manager, you will be responsible for supporting the governance, risks, and vulnerabilities program. Your role will also support the implementation of our organization's strategies regarding Information Security and IT controls by maintaining and developing new ways of doing things and creating business relationships transversally in Technology area and across the business units.

Main responsibilities:

• Act as a local Security POC for Country and Regional team incidents and requests - working with all InfoSec Group functions to remediate and solve.
• Cooperate with key stakeholders and use methods and facilities in the area of security-architecture to influence their decision making.
• Work closely with the Regional InfoSec team, Security Architecture & Engineering and the Regional IT Ops functions to assist in implementing projects and achieving country specific security targets
• Support to maintain and develop our risk control framework and processes that allow effective Information Security & IT monitoring, management and mitigation aligned with business objectives.
• Support to perform risk assessment and risk management activities across our organization and our vendors and drive standardization and centralization of control practices and ambassador central processes.
• Support to develop security standards, procedures, policies and improve our security positioning through process improvement, policy automation, and the continuous evolution of capabilities.
• Support to implement processes to automate and continuously monitor information security & IT controls, exceptions, risks & vulnerabilities, testing across a range of data processing activities, functions, and entities.
• Support, perform and control the full audit cycle over Information Security & IT controls effectiveness and compliance with all applicable directives and regulations.

Qualifications:

• Bachelor's computer Information Systems or related discipline and with almost 5 years of experience as sysadmin "Linux, AWX", and almost 2 year of direct experience in information security, with a main emphasis on Information Security risk Analysis and compliance.
• A pragmatic approach developed through hard won experience working in infosec departments and direct experience supporting process to:
• Support to define & execute of an Information Security & IT risk control framework, not only internally but also for third-party and partners. It is key also have experienced in documenting security procedures, policies, and standards.
• Perform Information Security & IT assessments and supporting compliance and maturity assessments using international standards and best practices from various industries.
• Ensure that all risks, vulnerabilities, and non-conformities are actively managed, monitored, documented, and mitigated if possible.
• Define and tracking KPIs/KRIs and generating reporting adapted for different levels and stakeholders.
• Perform Information Security & IT controls audits and executing remediation plans not only internally but also third party and partners.
• Support the process of conducting BIAS and defining plans to ensure the continuity of the business in case of a disruption.
• Fluent written and verbal communication skills in English.
• Travel availability

Why Join Capgemini?

Diversity Culture: we believe diversity drives innovation and inclusion builds success. We are committed to providing equal opportunities regardless of ethnicity, gender, age, disability, sexual orientation, or any other dimension of diversity

Professional Growth: Access to specialized training, certifications, and development programs.

Challenging Projects: Work on cutting-edge cloud solutions with global impact.

Cybersecurity community: be part of our professional team around the world.

Competitive Salary: A comprehensive compensation package aligned with your experience.

Flex abroad program: work 45 days per year in another country.

Permanent contract: from day one.

Holidays: 24 working days + 2 days off work per year for personal matters + 24 and 31 of December.

Additional Benefits:

• Health and accident insurance.
• Flexible compensation (restaurant tickets, transportation, childcare vouchers).

Would you like to join our team?