We are the innovators at the heart of the payments technology industry, shaping how the world pays and gets paid. The solutions our people build today power the growth of millions of businesses tomorrow. From your local coffee shop to unicorns and international banks. From San Francisco to Auckland. We are in every corner of the world, in every part of commerce. And just as we help our customers accelerate their business, we are committed to helping our people accelerate their careers. Together, we shape the evolution.
At Worldline Transport & Mobility, we tackle the persistent challenges faced by both business-to-business and business-to-consumer sectors. Our innovative digital software-as-a-service products are designed to foster sustainable economic growth while reinforcing trust and security within our societies.
We pride ourselves on our dedicated and hardworking colleagues who are eager to collaborate with you. Our commitment to continuous improvement drives us to seek innovative solutions that enhance quality, reduce costs, and elevate customer satisfaction.
The Opportunity
If you are a highly skilled IT Security Engineer or looking to advance your career from a Solution, Cloud, or Full-Stack Engineering background, we invite you to join our team!
We are looking for a talented IT Security Engineer to join our dynamic team within the Transport & Mobility (T&M) CTO function. The successful candidate will be responsible for managing security incidents, conducting risk assessments, and ensuring the effective implementation of security controls and policies. This role demands a proactive approach to enhancing our Global Information Security Management System (ISMS) and supporting the Group Security strategy at the local level. The IT Security Engineer will also engage with stakeholders, oversee security approvals, and conduct audits to ensure compliance with ISO27001 standards.
Team Culture:
Within the CTO team, we foster an open, honest, and collaborative environment. We strive to create a high-trust and supportive culture, encouraging team members to support one another. Every team member contributes ideas and experiences to shape our services and strategy. We prioritize people over processes and technology, working together to guide our technology portfolio and maintain our services. Our creative environment values the input of each team member in developing solutions tailored to our product requirements.
Day-to-Day Responsibilities
In this fully remote role with adhoc site visits, you will focus on:
* Security Controls Implementation: Ensure the effective implementation and enforcement of security controls and policies in new services and modifications to existing services, maintaining compliance with organizational standards.
* Local Security Strategy: Maintain and align the security standards and strategy at the local T&M level with the overarching group strategy.
* Cloud and Infrastructure Assessment: Evaluate the security implications of the latest Common Vulnerabilities and Exposures (CVEs) and their potential impact on our solutions, particularly in Google Cloud, AWS, and existing on-premise infrastructure.
* Risk Assessments: Support the global security teams performing security risk assessments and provide expert guidance to solution architects and development teams regarding the Global ISMS for both new and existing solutions.
* ISMS Improvement: Support the ongoing enhancement of the Global ISMS and assist in implementing the Group Security strategy within the local region.
* Dashboard Production: Support the global teams in the creation and maintenance of security incident and risk dashboards to provide visibility into the organisation’s security posture.
* Stakeholder Liaison: Collaborate with counterparts in customer and supplier organisations, fostering strong relationships to facilitate effective communication and collaboration.
* Audits and Compliance: Support the global security teams in conducting external and internal information security audits to support ISO27001 certification, ensuring all processes and controls meet required standards.
Your day/week will be comprised of:
* Proactive security risk mitigation tasks - implementing controls with the various T&M teams.
o Ensure security best practices are integrated into new designs.
o Advise product teams on assessments and mitigations related to CVEs.
o Evaluate the business impact of technical choices in a security context.
o Work with Worldline’s DevOps teams, guiding them in delivering projects and products using Agile and Waterfall methodologies, progressing towards a SecDevOps model.
* Monitor security alerts and incidents, responding promptly to mitigate risks.
* Engage with the Delivery teams with customers and suppliers to address security concerns and requirements.
* Conduct regular security risk assessments and document findings.
* Collaborate with a diverse range of professionals, including solution and cloud architects, developers, application support, project managers, and business specialists.
* Review and update security policies and controls as necessary.
* Prepare and present security reports and dashboards to management and stakeholders.
* Collaborate with third-party suppliers and systems as part of security solution design.
* Work with Worldline security and compliance teams to ensure systems meet security and data protection standards.
* Stay informed about the latest security threats, vulnerabilities, and trends, particularly in cloud environments.
* Drive the resolution of security issues as they arise.
* Maintain up-to-date knowledge of company standards and policies, as well as a broader understanding of industry best practices to ensure our services and products are best-in-class.
o Keep abreast of current and emerging technologies, proposing changes as needed.
o Undertake training as required to develop and maintain your skills in line with Worldline's technical strategy.
* Knowledge of other European (especially French) or international languages is advantageous, given our international business scope.
* Travel to business and customer locations, both nationally and internationally, as required.
Benefits:
* 25 days holiday + bank holidays
* Employee private medical cover, access to a virtual GP service
* Access to discounts and cash backs on shopping
* Access to purchase a range of flexible benefits through salary sacrifice
* Income protection @ 67% of base salary for 5 years, subject to Ts & Cs: you will be eligible for this benefit at the completion of 12 months of continuous employment with us
* Life assurance – 1 x salary if not in a pension scheme, 4 x salary if joins the pension scheme
* Pension – company will match contributions up to 10%
Shape the evolution
We are on an exciting journey towards the next frontiers of payments technology, and we look for big thinkers, people with passion, can-do attitude and a hunger to learn and grow. Here you’ll work with ambitious colleagues from around the world, take on unique challenges as a team, and make a real impact on the society. With an empowering culture, strong technology and extensive training opportunities, we help you accelerate your career - wherever you decide to go. Join our global team of 18,000 innovators and shape a tomorrow that is yours to own.
We are proud to be an Equal Opportunity employer. We do not discriminate based upon race, religion, color, national origin, sex (including pregnancy, childbirth, or related medical conditions), sexual orientation, gender identity, gender expression, age, status as an individual with a disability, or any applicable legally protected characteristics.
#J-18808-Ljbffr