Job Description:
Job Summary:
We are seeking a highly skilled and experienced Security Architect to contribute in the design, implementation, and maintainance of the Information Security Management System (ISMS) within Empresa confidencial Defence and Space, ensuring compliance with new Part IS regulation..
Job Responsibilities:
- Contribute to the ISMS implementation and maintenance; documenting and maintaining all the approved organisation key processes, procedures, roles and responsibilities;
- Contribute to the ISMS inventory through the analysis of their process / procedure and assets identification:
- Perform, review/update and technically approve security risk assessment on the assets of the Approved Organisation (IT/OT). Using Methods and tools like (MAGERIT/PILAR, EBIOS/FENCE)
- Define, propose, ensure decision and perform follow up on the security risk treatment plans,
- Communicate the outcome of the risk assessment and treatment plan to the ISMS manager, other personnel (as the Business Asset Owner), and other organisations sharing an interface (Security Incident Response Leader, Vulnerability Management Team, NISO),
- Analyse, Perform, review/update and technically approve security incident report on the assets of the Approved Organisation,
- Define, propose, ensure decision and perform follow up on information security incident response plan,
- Cooperate on investigations with other organisations that contribute to the information security of its own activities
Job Qualifications:
* Bachelor's degree in Computer Science, Information Security, or a related field. Master's degree preferred.
* Minimum of 5 years of experience in information security, with at least 3 years in a Security Architect role specifically focused on ISMS.
* Strong expertise in ISO 27001, ENS (Esquema Nacional de Seguridad) implementation and auditing.
* In-depth knowledge of information security principles, frameworks, and best practices (e.g., NIST, COBIT, NIS2, ENS).
* Proven experience i