je.st
news
Information Risk Analyst and Privacy Analyst
2020-08-05 11:11:57| Space-careers.com Jobs RSS
Position Reference 079 RHEA Group is a growing international company, focusing on providing innovative, marketready solutions and services in our key sectors of Space and Security for both commercial and institutional customers. We employ over 500 staff working across 10 different countries. We work with distinguished clients such as the European Space Agency, EUMETSAT, NATO, European Commission, Canadian Government and national space agencies. When you work for RHEA, you will have the opportunity to work alongside some of the best talented minds and experts in our industries, either working at our clients sites on some of the most exciting space missions or on cuttingedge projects in security, concurrent design, data and ground systems within our own offices. To attract the best candidates, RHEA offers our employees competitive remuneration packages, unique career opportunities, individualised training and development programmes and local relocation support to take the stress out moving to another country or city. We are recruiting now. We understand your concerns during this period of a global pandemic and we will work with you, at your pace ensuring your questions are answered and maximum flexibility is offered. We are currently looking for an Information Risk Analyst and Privacy Expert to work in the beautiful city of Frascati. Tasks and Activities The scope of work will include Ensuring that any Personal Data which is entered into the system shall be processed in compliance with ESAs and the General Data Protection Regulation GDPR on Personal Data Protection PDP. Implement Identify, evaluate and monitor the implementation appropriate technical and organisational measures to ensure a level of security appropriate to the risk, including inter alia as appropriate the ability to ensure the ongoing confidentiality, integrity, availability and resilience of processing systems and services the ability to restore the availability and access to Personal Data in a timely manner in the event of a physical or technical incident and a process for regularly testing, assessing and evaluating the effectiveness of technical and organisational measures for ensuring the security of the processing. Collaborate in the following tasks Inform and advise the controller or the processor and the employees who carry out processing of their obligations pursuant to GDPR and to other Union or Member State data protection provisions Monitor compliance in relation to the protection of personal data, including the assignment of responsibilities, awarenessraising and training of staff involved in processing operations, and the related audits Provide advice where requested as regards the data protection impact assessment and monitor its performance Act as the contact point on issues relating to processing Evaluate the risk associated with processing operations, taking into account the nature, scope, context and purposes of processing. Involved in internal review as an Information Security Analyst and privacy expert defining, conducting, evaluating and reporting on gap analysis based on interviews and review of evidence records towards ISO 27001 compliance. Proposing, reviewing, and presenting the necessary documented information towards ISO 27001 compliance. Collaborating closely with the team responsible for ISMS operations to plan, execute, and followup operational pilot exercises of proposed ISMS improvement. Skills and Experience The following skills and experience are mandatory You have an university degree in Engineering, Economics, Information Technologies You have 24 years of experience junior midlevel or more than 4 years senior in a similar function. You have experience in clientmanagement and project delivery. Ideally you have first handson experience in a consulting environment. You are familiar with cyber security frameworks as NIST, COBIT, ISO 27001, ISO 31000, ISO 25000. You are familiar with risk assessment concepts and methodologies. Attitude towards the preparation of policies and privacy procedures required by the GDPR, Information security required by ISO27001 Certifications as CSX Cybersecurity, ISO 27001, CISM, CISA and other privacy related are highly desirable. How to Apply Looking to take your career to the next level? Interested applicants should submit their CV and Cover Letter to RHEAs Recruitment team at careersrheagroup.com no later than 21082020 Preference will be given to candidates eligible for an EU or national personal security clearance at the level of CONFIDENTIAL or above.
Tags: privacy
information
risk
analyst
Category:Transportation and Logistics