Information Security Officer

Summary

Join Mercedes-Benz.io's Business Operations department as an Information Security specialist. Further develop and implement the cybersecurity strategy, ensuring compliance with global standards while maintaining an agile work environment. Support incident processing, conduct awareness campaigns, and advise on cybersecurity project questions. Collaborate with the Technical Owner on technical and organizational measures, handle non-compliance cases, and support data processing by evaluating supplier security. Conduct forensic analyses and report regularly to management. This is a full-time, permanent position offering flexibility to work from offices in Lisbon or Braga, or remotely from mainland Portugal.

Requirements

• Fluent English
• Degree in computer science or comparable education with a focus on Information Security
• Min 3 years+ of hands-on experience in Information Security for software projects and IT architectures
• Expert knowledge and experience in one or more of the following areas: secure software development, application and mobile security, system design and design, threat modeling, risk management
• Knowledge and experience in technical and organisational areas of Information Security
• Drive to provide industry´s best practices and stay up-to-date about common threats and vulnerabilities
• Ability to discuss and evaluate technical concepts with senior experts

Responsibilities

• Further developing and implementing the cyber security strategy with adjustments for location-specific characteristics in accordance with business objectives and central requirements
• Ensuring fulfillment of Mercedes-Benz Global Cyber Security Key Performance Indicators
• Providing support during the processing of cyber security incidents, problems and risks that are either identified by the ISO or addressed by Global Cyber Security
• Carrying out awareness measures and assisting global cyber security awareness campaigns
• Being functionally involved and advising with respect to cyber security project questions
• Assisting the Technical Owner with questions concerning the technical and organizational measures (TOMs) based on the security objectives of the information's classification
• Assisting and advising during handling of cases of non-compliance with standards or procedural instructions
• Providing support in data processing by evaluating the supplier's security measures
• Assisting the CIRC in conducting necessary forensic analyses
• Submitting evidence of a valid, predefined certification and completed test that is accredited by Global Cyber Security
• Reporting regularly and proactively at the management level to MB.io MD´s, the ISO Coordinators

Preferred Qualifications

• A broad understanding of our web and mobile technologies (see our Tech Stack )
• A general understanding of enterprise context and how to build digital products
• Experience with AWS, SAP, AEM and/or other CMS
• One of the following certificates: CC, AWS Cloud Practitioner, CISSP, CSSLP, CCSP, TPSSE/TISP

Benefits

• Health insurance for you and your family
• Life insurance
• Proactive self-development in international Trainings and Conferences
• Language Training courses
• Brand Connection Perks