IT Security Lead

Americold – Helping our customers Feed the World

Here at Americold Barcelona we are now recruiting for an IT Security Lead.

The Information Security Engineer will design, configure, optimize existing, and deploy new security systems / solutions aligned with global business risk / objectives. This role is focused on technical operations and support of various information security tools including event / incident management (SIEM), cloud security, endpoint detection and response, email security, and vulnerability management. This position will be responsible for supporting the Director IT Security in reviewing and evaluating new, alternative, and cost-effective information security solutions and services and partnering with compliance.

Essential Functions :

• Partners with various teams, Infrastructure, End User Computing and the PMO to optimize existing security services and deploy new tools in support of the security roadmap.
• Must be capable of interacting effectively with various internal teams, peers, and management staff.
• Support the information security manager with creating information security metrics for the respective supported security products. This will be done monthly.
• Deploy new information security tools, services, processes, and procedures to support the information security roadmap.
• Support information security services including SIEM, MDR, endpoint technology, secure email gateway, cloud security, certificate management, network security, and vulnerability management.
• Respond to critical incidents in a timely manner in partnership with security operations, legal, compliance, incident response teams, etc.

Qualifications & Experience :

• Bachelor’s degree; Preferred Management Information Systems, Computer Science, Engineering, or related discipline.
• 5-10 years of information security and information technology desired
• Strong communications skills; written and verbal.
• Industry security certifications preferred; CISSP, CompTIA +, CEH, SSCP, Security +, etc.
• Must have a solid understanding of information technology and information security practices, including the areas of host security, platform architecture, network perimeter security, intrusion detection / prevention, application security modelling, physical security, systems integrity, and continuity planning.
• Familiar with security policy and standards development, implementation, and program review
• Experience in various technologies, including Unix, Windows, Linux, TCP / IP, Storage devices, network devices, fail-safe strategies, system architecture, LAN and WAN and intranet / internet security environments including firewalls, intrusion detection, incident response, vulnerability testing, operating system hardening, regulatory compliance, and data classification.
• Experience in IAM, SEIM, Log Management, Patch Management, Vulnerability Management, eDiscovery, Cloud Security, Virtual Machine Security, Wireless and Mobile Security, and Industrial Controls / Operational Technology (OT)