Cyber and Digital Security Senior Specialist

Job content

Position Snapshot

Nestle Global Tech Hub Barcelona, Spain

Permanent Contract,

Rate 100%

Grade: H

About IT In Nestlé

We are a multicultural and diverse team of IT professionals driving the biggest IT operations landscape of the FMCG industry, and a Digital Transformation at scale. We work with leading technologies and top external partners to provide solutions to enable Nestlé to engage with millions of consumers and customers worldwide. We look for people who are curious, courageous, innovative, collaborative and passionate about new technologies. We want to hear from candidates who have the courage to challenge; who believe the only way of moving forward is by doing and who look for solutions to improve the lives of our consumers through responsible use of technology.

In order to complete our Global Security team, we are currently looking for a Cyber and Digital Security Senior Specialistto join us.

Position Summary

In this position, you are responsible for establishing and maintaining security products, platforms and solutions designed to mitigate IT risks across Nestlé Group to ensure that information assets are adequately protected. The Cyber and Digital Security Specialist will proactively work with IT and business units to implement practices that meet defined policies and standards for information security within Infrastructure Security & Data Protection. The Cyber and Digital Security Specialist continuously researches and stays on top of emerging security threats, technologies and trends.

Key Responsibilities

• Work closely with Enterprise Architects, other functional area architects and other Security Specialists to ensure adequate security solutions are in place throughout all IS/IT products and platforms to mitigate identified risks sufficiently and to meet business objectives and regulatory requirements
• Serve as a security expert in infrastructure design and deployment, database design, network and/or platform (operating system) efforts, helping product teams comply with enterprise and IT security policies, industry regulations and best practices
• Develop, maintain and publish up-to-date security policies, standards and guidelines, and oversee training and dissemination of security policies and practices
• Work directly with Product Managers, BRMs and IT Customers to facilitate business IT risk assessment and risk management processes, and work with stakeholders through the enterprise on identifying acceptable levels of residual risk
• Create a framework for roles and responsibilities with regard to information ownership, classification, accountability and protection
• Provide strategic risk guidance for IT projects and product management, including the evaluation and recommendation of technical controls
  
  

Required Profile

• Degree in business administration or a technology-related field, or equivalent work- or education-related experience
• 8+ years of experience in a combination of risk management, information security and IT jobs
• Experience with Azure and/or AWS and/or GCP related to administration, security, deployment, management and automation technologies
• Experience on infrastructure network security (i.e. data centers, security gateways, VPN, on prem and in the cloud)
• Experience on operating systems security (Linux and/or Windows)
• Experience on databases security (SQL, Oracle, NoSQL, HANA DB etc)
• Experience on Project Management and Vendor Management
• Preference to have worked in a global environment and with virtual teams.
• Professional security management certification, such as a Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Certified Information Systems Auditor (CISA) or other similar credentials, is preferred
• Excellent written and verbal communication skills, interpersonal and collaborative skills, and the ability to communicate security and risk-related concepts to technical and nontechnical audiences in English.
• Excellent analytical skills, able to manage multiple projects under strict timelines, work well in a demanding dynamic environment with minimal supervision
• Critical thinker with strong problem-solving skills
  
  

Benefits

An attractive and dynamic international working environmentwith the most talented and engaged IT professionals in their field and working with best-in class technologies

Be yourself @Nestlé, everyone else is taken!Our values are rooted in respect, we champion diversity and inclusion, and believe on the power of diversity to build winning teams where everyone can be the best version of themselves

Personal and professional growth through ongoing training and constant career opportunities reflecting our conviction that people are our most important asset

Great benefitsincluding competitive salary and a comprehensive social benefits package

Hybrid working environment with flexible working scheme, allowing everyone to meet their needs enjoying the advantages of remote work and combining with the amazing Nestlé facilities (dog friendly!) and culture

If you want to work in an international multi-discipline team, believe you have the right profile and you are looking for a development opportunity apply now in English on our career website www.nestle.com/jobs