Regional Security Analyst

We believe that we make a difference every day. To do that, we need committed and engaged employees. Our people are accountable for delivering world-class service and are passionate about making the world a safer and more secure place. Our teams operate with integrity and respect, fueled by an entrepreneurial spirit. We are building a high-performance organization through investing in our people with great development and growth opportunities.

Do you want to have an impact every day by making people safe and bringing them peace of mind? Are you interested in being part of a dedicated, passionate team that believes security is a human right? Looking to join a company where innovation and technology are at the heart of its solutions?

Highly motivated individuals with excellent problem-solving skills and the ability to prioritize shifting workloads. An effective communicator, you'll be a confident team player with a genuine passion to make things happen in a dynamic organization. If you're ready to take on a wide range of responsibilities and are committed to seeking out new ways to make a difference, this role is for you.

We have a global role, Information Security & IT Risk Analyst, available in Madrid (Spain), reporting to the Information Security Manager. You will support governance, risks, and vulnerabilities programs, and help implement our organization's strategies regarding Information Security and IT controls. This includes maintaining and developing new processes and fostering cross-functional business relationships within the Technology area and across business units.

This role involves coordinating and performing security assessments, control testing, reporting, and activities in accordance with internal controls, regulatory, and departmental policies. You will update and maintain our control frameworks, work with internal stakeholders, and lead efforts to ensure the security of all information managed by Verisure. Additionally, you'll research, develop, and analyze technologies, processes, and assessments to implement remediation actions.

1. Act as the local Security Point of Contact for country and regional team incidents and requests, collaborating with all InfoSec functions to remediate issues.
2. Work with key stakeholders to influence decision-making using security architecture methods and facilities.
3. Collaborate with regional InfoSec, Security Architecture & Engineering, and IT Operations teams to support project implementation and security targets.
4. Maintain and develop our risk control framework and processes for effective security monitoring, management, and mitigation aligned with business objectives.
5. Perform risk assessments and manage risks across the organization and vendors, promoting standardization of control practices.
6. Develop security standards, procedures, and policies, and continuously improve our security posture through process enhancements and automation.
7. Implement processes to automate and monitor information security and IT controls, risks, vulnerabilities, and testing activities.
8. Conduct and oversee the full audit cycle for information security and IT controls, ensuring compliance with applicable directives and regulations.

• Bachelor's degree in Computer Information Systems or related discipline, with at least 2 years of experience in information security, focusing on risk and compliance.
• Experience supporting the development and implementation of risk control frameworks, documenting security procedures, policies, and standards.
• Proficiency in performing security assessments, compliance evaluations, and managing risks using international standards and best practices.
• Experience in managing risks, vulnerabilities, and non-conformities, and in defining KPIs/KRIs with reporting for stakeholders.
• Ability to support audits, gather evidence, and respond effectively to external, internal, and third-party audits.
• Knowledge of identity management, vulnerability management, business continuity, networking (routing, firewalls), operating systems (Windows, Linux), security tools (WAF, NACs, EDR), and cloud platforms (AWS, Azure).
• Fluent in English, both written and verbal. Willingness to travel.

• Proficiency with MS Office, project management tools, and GRC tools.
• Knowledge of information systems auditing, monitoring, and process assessment.
• Interest in home security and smart home technologies, with an understanding of their business models.