Yondr is a disruptor. We challenge convention and simplify complexity. A global developer, owner operator and service provider of data centers, we deliver complex data center capacity needs for the world’s largest tech companies. Our exponential growth sees us looking for extraordinary people to help accelerate us towards our vision: a tomorrow without constraints.
But we can’t do this without you.
About the Role
Our business is growing and we need an experienced Information Security engineer to join our Global Technology Security team with a proven track record of building/operating in a modern Information Security practice in a global organisation. You will have developed, managed and implemented information security controls and processes. This will involve a range of activities including consultative engagements, project-work, pro-active security testing, vulnerability management, auditing, reporting and investigations.
You’ll be responsible for conducting risk assessment, policy creation and awareness training while staying up to date with other industry best practices. You’ll be hands-on with a variety of security technology and you will interact with various internal teams to lead and deliver best-in-class solutions in an exciting fast-paced environment. Dynamic, smart people and inspiring, innovative technologies are the norms here.
/ Drive the evolution of the company’s Information Security standards to maintain best practice and alignment with corporate policies and regulatory requirements
/ Be hands on in managing and maturing our security technology and processes
/ Provide consultation and/or education as needed and drive the adoption of security as a value add/best practice
/ Work in partnership with stakeholders, to ensure all projects, changes, IT standards and procedures are compliant with Information Security Policies
/ Manage (third party) penetration testing and facilitate any subsequent remediation activities
/ Act as a subject matter expert on matters of Information security relating to Yondr
/ Conduct 3rd party risk assessments to ensure suppliers are aligned with our security standards and fall within our risk tolerances
/ Managing our phishing platform, training and related reporting
/ Provide guidance and subject matter expertise on processes, controls, and objectives around audit and information security activities, best practices, and process improvements.
/ Oversight and responsibility for Information security risk remediation activities
/ Day-to-day administration of Qualys VRM and Compliance to drive the attack surface management program
/ Conduct Identity and Access Management entitlement reviews of key platforms and applications
Qualifications and experience
/ Experience with regulatory and compliance standards; ISO27001, SOC2, PCI DSS
/ 5+ years experience working as an information security professional within a medium to large sized global organisation
/ Proven experience developing, implementing, maintaining and leading an effective information security control assurance programme
/ Strong stakeholder management skills, including technical members of staff and senior executives, stakeholder negotiation and influencing
/ Experience developing security architecture
/ Background in working with organizations that provide 24x7x365 operations
/ Must understand network architecture and specific network components
/ Understanding of security tools, vulnerability management, penetration testing and remediation
/ Relevant Information Security certification such as CISSP, CISA, CISM, GSEC is advantageous
/ Information Security, alongside significant knowledge and experience of IT security
/ Experience of working in a global firm with key stakeholders
/ Knowledge of Enterprise Agile delivery methodologies e.g. SAFe
/ Working knowledge of Qualys, Defender, Knowbe4 are essential. Exposure to Elastic stack and Expel MDR are desirable
At Yondr, we want to enhance the diversity, equity, inclusion and belonging of our workforce to reflect the world we live in. Our roles are potential opportunities for everyone; all interested parties, regardless of nationality, race, ethnicity, religion, age, sexual orientation, or gender, are welcome to apply. We ensure all candidates have equitable access and consideration throughout the hiring process.
Yondr is committed to fostering a welcoming, safe and inclusive work environment. We provide support through our benefits, which are inclusive of all backgrounds.