Cyber and Digital Security Expert - Application

We are looking for a Cyber and Digital Security Expert - Application Security to be part of our Security & Compliance .

Position Snapshot

• Location: Nestlé Global Hub in Barcelona, Spain
• Permanent Contract
• Stream: Security & Compliance
• Type of work: Hybrid
• Work Language: Fluent Business English

The role

WAF, SecDevOps, OWASP.

What you’ll do :

• Conducts systematic security assessments of Digital Solutions (Web Sites, Mobile and Social Media Applications, Cloud Solutions and associated infrastructure, etc.) to identify security risks.
• Ensures new products, platforms and solutions are implemented " Secure & Compliant by Design ".
• Develops, maintains and publishes up-to-date security policies, standards and guidelines, and oversees training and dissemination of security policies and practices.
• Works directly with IT Product Managers, BRMs and IT Customers to facilitate business IT risk assessment and risk management processes, and works with stakeholders through the enterprise on identifying acceptable levels of residual risk.
• Provides periodic reporting on the current status of the information security program to enterprise risk teams, senior business and IT leaders - in collaboration with the Office of the CIO - as part of a strategic enterprise risk management program.

We offer you

We offer more than just a job. We put people first and inspire you to become the best version of yourself.

• Great benefits including competitive salary and a comprehensive social benefits package. We have one of the most competitive pension plans on the market, as well as flexible remuneration with tax advantages: health insurance, restaurant card, mobility plan, etc.
• Personal and professional growth through ongoing training and constant career opportunities reflecting our conviction that people are our most important asset.
• Hybrid working environment with flexible working scheme . Our state-of-the-art campus is dog friendly and equipped with a medical center, canteen and areas to co-create network and chill!
• Recreation activities such as yoga, Zumba, etc. and a wide range of volunteering activities.

Minimum qualifications :

• Degree in Business administration or a technology-related field, or equivalent work
• or education-related experience.
• 6+ years of experience in a combination of risk management, information security and IT jobs — at least four must be in a senior leadership role.
• Professional security, cloud and software architecture certifications, such as a CISSP, CISSP-ISSAP, CSSLP, GIAC, AWS Solution Architect, Azure Solutions Architect or other similar credentials, is preferred.
• Knowledge of common information security management frameworks, such as ISO 27001 and NIST.

Bonus Points If You :

• Team player, high degree of initiative, dependability and ability to work with little supervision.

About the IT Hub

At Nestlé IT, we are a diverse, global team of IT professionals in the biggest health, nutrition and wellness company of the world. We strive to create an environment where people are valued for who they are. We innovate every day through future ready technologies to create opportunities for Nestlé to delight consumers, customers and employees alike. We collaborate with partners around the world to deliver tangible value at global scale. We continuously work to develop our people to be future ready.

About Nestlé

We encourage the diversity of applicants across gender, age, ethnicity, nationality, sexual orientation, social background, religion or belief and disability.

Step outside your comfort zone; share your ideas, way of thinking and working to make a difference to the world, every single day. You own a piece of the action - make it count.

Join IT Hub Nestlé #beaforceforgood

How we will proceed : You send us your CV We contact relevant applicants Interviews Feedback Job Offer communication to the Finalist First working day