Do you have a passion for Information Security? Can you create, maintain and ensure the implementation of Information Security Governance within a dynamic software company as Visma? Are you also able to do this in a way that it looks exciting? Then you are the colleague we are looking for!
Visma IT currently holds various ISO certificates and ISAE reports in its compliance registry. Becoming a compliance manager within the information security area, you will also take part in achieving the at all time strategic focus for compliance in all our lines of business.
You will be a member of the Information Security organization, where your skills and contributions to manage our security management system will be very visible. You must love to work with SaaS, PaaS and IaaS environments in public and private clouds, help team members and to receive help from them.
We are looking for a:
Colleague who is result-oriented, enterprising, outgoing and structured
Person who has the ability to be creative, innovative and be self-driven
Strong influencer who drives others by being inspiring and enthusiastic
Your daily work will include:
Prepare for the yearly ISAE 3000, ISAE 3402 and ISO 27001 audits and certification processes
Advicor and collaborator with senior team members to implement and maintain appropriate compliance processes (including compliance monitoring)
Work with internal teams to achieve and report on compliance
Be a part of the internal and external audit processes to achieve compliance within agreed timeframes
Work to integrate lessons from compliance into the business’s security program
Work with the rest of the Visma Security team on constantly improving security
Define the overall compliance strategy
Help guide our overall security policy and architecture
Desirable skills, knowledge and experience:
Strong analytical skills, structure and creativity
Several years of experience with Information security and compliance, e.g. as a consultant with an audit, assurance or security testing firm, or within an internal compliance function at a larger organization
Experience with working on compliance programs in a company: should have been involved in seeing at least one program initiative through from start to finish
In depth knowledge with globally recognized security and audit frameworks, such as. ISAE 3000, ISAE 3402, NIST, ISO 9001 and the ISO 27kserie
Well founded technical knowledge within the area of Information Security
Expert within Information Security Risk Management and Controls
It will be an advantage if you hold a security certification such as CISSP, CISA, CISM or similar
Ability to work cross-functionally with internal stakeholders
Ability to work efficiently and independently in a fast-paced, high-volume environment
We offer you:
As many challenges as you want
An international organization with good career opportunities (a workday filled with ambitious work tasks and unique career opportunities)
An openness for input and ideas on how to move security and the organization forward
A professionally strong and engaging work environment
A flexible and vibrant work environment
A flat and non bureaucratic organisation with a trust-based and informal work culture
First-class canteen arrangement that offers delicious dishes (this is somewhat restricted during covid-19)
Barista that offers you delicious coffee (this is somewhat restricted during covid-19)
Very good pension and insurance schemes
Employee benefits, such as discounted agreements and services
An exciting everyday life with some travel business both domestically and abroad (this is somewhat restricted during covid-19)
What can Visma offer
We offer an exciting position in an international work environment where you will be part of a dynamic and highly qualified international team. You will have good opportunities for career development through internal training and various work tasks in a prominent international company. We offer competitive terms and conditions.
We conduct background checks on relevant candidates through our partner Semac.
About the company:
IT service delivery in the digital age means rapid growth and major changes as emerging technologies introduce paradigm shifts. Cloud service delivery is the next major driver. Success in changing environments requires the ability to innovate, design and deliver while providing steady and secure IT deliveries.
In addition to providing IT services to our customer portfolio, Visma IT provides all Visma business units with the tools and infrastructure they need to deliver state-of-the-art solutions and services to their customers. By giving employees access to the right technology, we ensure quality at all stages of the customer journey. We also provide data storage in on-premise environments, in hosting environments and in the cloud, both public and private.
Our international teams base their work on an extensive knowledge of IT service delivery in both on-premise environments and the public and private cloud. Security is our number one priority, and to ensure that we comply with all laws and regulations, we are ISO certified in the areas of security, quality, project management and IT service delivery.
Timisoara, Sibiu, remote
Karenslyst Allé 56 0277 Oslo