Information Security Officer
RESPONSIBILITIES
- Enforce the Group’s information security strategy, policies, standards, and frameworks across the Marlink Cyber company.
- Develop, maintain, and continuously improve the Information Security Management System (ISMS) in line with ISO/IEC 27001 and other applicable standards.
- Ensure compliance with applicable legal, regulatory, and contractual information security requirements (e.g. GDPR, NIS2, client obligations).
- Own and coordinate information security certification activities, including preparation for internal and external audits and ongoing certification maintenance.
- Safeguard the cybersecurity posture of internal operations, products and services, and client-facing environments.
- Conduct and oversee information security risk assessments and support risk treatment planning in collaboration with business and technical stakeholders.
- Act as the primary point of contact for information security audits, assessments, and client assurance activities.
- Promote and embed a strong cybersecurity culture across countries through awareness, guidance, and collaboration with internal teams.
- Advise product, delivery, and commercial teams on information security requirements to enable secure and compliant business growth.
- Coordinate with Group functions and external partners to ensure alignment, reporting, and continuous improvement of information security practices.
Qualifications
QUALIFICATIONS
- University degree in Information Security, Computer Science, Engineering, or a related field, or equivalent professional experience.
- 5+ years of professional experience in information security, cybersecurity, or GRC roles, with demonstrated responsibility for governance, risk, compliance, and information security management.
- Strong knowledge of relevant legal, regulatory, and industry requirements (e.g. GDPR, NIS2, ISO standards, client security requirements).
- Hands-on experience with information security risk management, audits, and compliance activities.
- Experience supporting or leading certification and audit processes (e.g. ISO/IEC 27001, SOC 2, or similar frameworks).
- Ability to work effectively in a cross-country, organization and collaborate with technical, business, and Group stakeholders.
- Strong communication and stakeholder management skills, with the ability to translate security and compliance requirements into practical guidance.
- Professional certifications such as ISO/IEC 27001 Lead Implementer/Lead Auditor, CISSP, CISM, or similar are considered an advantage.
Additional Information
What we offer:
- Growth in an open-minded culture with very little hierarchical macrostructure.
- Opportunity to achieve your biggest potential and development in your area of responsibility.
- Continuous development and advancement through industry-relevant certifications and internal/external training/workshops.
- Challenging local and global projects involving current solutions.
- Learning and sharing experiences with well-known and respected experts in the field of information/cybersecurity.
- Positive, motivating, international work environment.
- Hybrid work – office work + possibility of working from home by agreement.
- Flexible working hours.
- Additional and supplementary health insurance packages.
- Monthly fee for transportation.
- Multisport membership.
- Pet-friendly office.
- Social events and team bonding gatherings.