Information Security Consultant

Span is a Croatian IT company with a global reach specializing in high-quality information systems design and management services, as well as tech support for customers and enterprises. We're constantly improving, advancing, and adopting new trends, new skills, and new expertise, giving our employees virtually endless opportunities for professional development.

As a result of business growth in information security field, we are looking for new members to join our team.

The primary task of the InfoSec team is to assist and interrelate between legal, DPO and business owners and to coordinate and advice in the field of data protection. This means cooperation with our technical cyber security teams to design and implement the best solutions related to information security.
We work on domestic and international projects which also means interaction and learning from various international experts in the fields of governance, risk, and compliance.

Projects are diverse and require constant research and learning, creativity as well as proactivity.

What you'll do:

• Analyzing critical business processes with the customers
• Collecting and analyzing user requirements regarding data governance
• Providing advice in the field data protection
• Analysis of current compliance status and defining recommendations to achieve compliance according to international standards, regulatory frameworks, and good practices
• Creating and writing necessary policies and procedures in the field of information security
• Preparing and delivering presentations for clients and internally

We could be a perfect fit if you are: 

• Approaching activities in a planned and organized manner, focused on essentials and working quickly and efficiently
• Showing a strong desire for constant career development and gaining experience 
• Inclined to innovate, always trying out different approaches and looking for new, better and more efficient ways of working
• Appreciating and accepting differences, respecting other people and their opinions and ideas and readily giving them yourself

What we expect:

• 3 years of working experience within the IT field 
• Understanding IT processes and methodologies
• Working experience in information security, internal audit, risk management
• Active knowledge of English (written and spoken)
• High motivation to work in accordance with security principles and best practices
• Excellent written and verbal communication skills
• Willingness to learn

Skills that will bring you extra points:

• Professional certificates (e.g., ISO 27001 Lead Auditor, CISA, CRISC)

What's in it for you:

• Competitive salary according to your experience
• A business phone of your choice
• InHouse testing center- we are giving you an option of gaining professional certificates
• Mentor - no matter how much experience you've got, we will provide you with an adequate mentor
• Regular feedback on your performance and personalized career development plan
• Possibility to earn different types of bonuses
• Subvention of Multisport card- not only brain workout is important
• Minimum of 25 vacation days
• Complete health checks- adjusted for men and women
• Psychological counseling- we care about your well-being
• Lunch and transportation compensations
• Benefits for children of employees