Information Security Governance, Risk and Compliance Specialist
about-project :
- We are in search of a dedicated Information Security Governance, Risk and Compliance Analyst to play a key role in our organization's InfoSec risk assessments, compliance activities, and ISO 27001 audit management and ISO 31000. The successful candidate will possess a solid background in information security with a focus on policy, risk management, and compliance, coupled with practical experience in ISO 27001 audits, ISO 31000 and GRC best practices.
responsibilities :
- Conduct and manage InfoSec risk assessments, ensuring thorough reporting and tracking in line with industry standards.
- Support the coordination of ISO 27001 audits, where required.
- Support the broad adoption and implementation of ISO 27001 policies and standards throughout Sportradar.
- Understand Risk Management standards and methodology based on ISO 31000.
- Coordinate risk workshops with stakeholders throughout the organization, covering emerging risks and opportunities.
- Aid risk owners and business unit leaders in articulating and evaluating risks, both threats and opportunities, and devising suitable management strategies.
- Collaborate with the business to identify and evaluate existing controls and develop new action plans necessary for effective risk management.
- Assist risk leads in maintaining Risk Registers, Risk Treatment Plans, and significant Risk Dashboards across all business segments.
- Maintain a central repository for audit evidence, ensuring it is up-to-date and accessible.
- Keep abreast of the latest procedures, methods, and industry insights to enhance team knowledge and expertise.
- Regularly review and update security standards, policies, and practices to ensure compliance with corporate and audit requirements.
- Create new policies and standards where required.
- Assist in the GRC function by responding to inquiries related to InfoSec compliance from various business units.
- Proactively identify areas for improvement and provide valuable advice on process and control enhancements.
requirements-expected :
- Extensive experience in information security, particularly focusing on policy, risk, and compliance.
- Proven expertise in supporting ISO 27001 audit and managing risks in accordance with ISO 31000.
- Familiarity with GRC tools, techniques, and best practices.
- A track record of developing and implementing effective security policies and standards.
- Experience in managing third-party audits, compiling audit evidence, and organizing audit responses.
offered :
- Working at Sportradar gives you a platform to gain international recognition for your expertise.
- This is a chance to work with industry experts to launch and build a career in one of the fastest-growing businesses in the digital sports environment and help us scale our operations.
- We are a diverse and collaborative global team with a unique spirit, determined to achieve our goals with integrity and focus.
- We support learning and self-development - our eAcademy offers a variety of courses in English to raise your skills.
- Our company benefits support your health and well-being and is matched by a salary and compensation package based on your experience.
- We talk sports every day and take the sporting spirit into our daily work.
benefits :
- remote work opportunities
- flexible working time
- fruits
- integration events
- no dress code
- coffee / tea
- drinks
Bądź pierwszy, który ubiega się o to miejsce pracy!
-
Dlaczego szukać pracy na HitPraca.pl?
Subskrybuj oferty pracy
Codziennie nowe oferty pracy Możesz wybierać z bardzo szerokiej gamy ofert pracy - naszym celem jest posiadanie jak najszerszej oferty pracy Otrzymuj nowe oferty e-mailem Bądź pierwszym, który odpowie na nowe oferty pracy Wszystkie oferty pracy w jednym miejscu (od pracodawców, agencji pośrednictwa pracy i innych portali) Wszystkie usługi dla kandydatów do pracy są bezpłatne Pomożemy Ci znaleźć nową pracę