Information Security Specialist

Summary

Join Mindera's security team and contribute to shaping their security strategies and roadmaps, ensuring alignment with business goals. You will be responsible for identifying and assessing security risks, proposing solutions to protect assets and data, reviewing and updating security policies, managing relationships with third-party vendors, and communicating Mindera's security posture to clients. This role requires 5+ years of experience in a similar position, demonstrated ability to manage and mitigate security risks, broad understanding of information security principles and practices, familiarity with security controls, knowledge of risk management frameworks, excellent communication and presentation skills, strong analytical and problem-solving abilities, and fluency in English. Additional preferred qualifications include experience with data protection regulations, knowledge of cloud security, understanding of compliance and audit processes, and knowledge of the ISO 27001:2022 standard.

Requirements

• 5+ years of solid experience in a similar role
• Demonstrated ability to manage and mitigate security risks in a dynamic environment
• Broad understanding of information security principles and practices
• Familiarity with security controls and their implementation across various systems
• Knowledge of risk management frameworks and methodologies
• Excellent communication and presentation skills to effectively share security concepts to both technical and non-technical audiences
• Strong analytical and problem-solving abilities
• Excellent spoken and written English
• Autonomous, proactive with a strong sense of responsibility
• Experience working in a collaborative environment and liaising with other parts of the organisation
• Open to honest feedback and enthusiastic about self-improvement

Responsibilities

• Strategic Contribution: Help shape our security strategies and roadmaps, ensuring they align with our business goals, and provide expert advice to support decision-making related to information security
• Risk Management: Identify and assess security risks across Mindera, and propose solutions to protect our assets and data
• Policy and Compliance: Assist in reviewing and updating our security policies to meet current industry standards such as ISO 27001, NIST Cybersecurity Framework, DORA, GDPR, PCI/DSS and more
• Vendor Management: Continually evaluate, through security assessments, and manage relationships with third-party vendors and service providers
• Client Interaction: Be at the interface between Mindera and its clients, communicating our security posture and addressing their questions

Preferred Qualifications

• Experience with data protection regulations and best practices for safeguarding sensitive information
• Knowledge of cloud security (AWS and GCP)
• Understanding of compliance and audit processes
• Knowledge of the ISO 27001:2022 standard and controls

Benefits

• Health Insurance, because health comes first
• Flexible working hours
• Open holidays, take the time you need for yourself
• Profit distribution for everyone
• Mindera Annual Trip, Sports, and sharing groups to connect and have fun!
• Training & conferences, create your own training plan
• Child Care vouchers
• Choose Laptop & Peripherals that best suit your needs
• Hotspot with unlimited usage (PT), for work or Netflix ;)
• We have amazing offices in Porto, Aveiro, and Coimbra if you want to physically connect with minders. Remote from Portugal is also an option. Remote from other Countries will depend on your current location and Projects
• At the offices, we have a wide range of snacks to keep you fed and healthy
• Partnerships with local businesses
• Most of all You get to work with a bunch of great people, where the whole team owns the project together in a politics-free environment. Our culture reflects our lean and self-organization attitude. We encourage our colleagues to take risks, make decisions, work in a collaborative way and talk to everyone to enhance communication. Freedom and Responsibility go hand in hand, and we value commitment, feedback, and empathy