Are you passionate about auditing and technology? Do you enjoy getting to the root of problems and providing solutions? Infineon’s Cyber team is hiring, and we want you to be a part of it. Infineon’s Cyber team spans across several countries around the world and covers Cyber Governance & Risk, Consulting, Security Monitoring, Incident Response & Digital Forensics and OT Security functions globally. Take the opportunity to apply and become part of our Verification team as a Cyber & Information Security Auditor in Porto!As a Cyber & Information Security Auditor, you will be part of the Verification team within the Governance & Risk function and be responsible for the verification of our Cyber & Information Security Management System as well as for driving the Verification Automation to enable the continuous and secure growth of Infineon’s business.
In your new role you will:
1. Be responsible for the regular verification of the completeness and effectiveness of Infineon’s Cyber & Information Security Management System (2nd line of defense) - with a focus on the regions Europe and Americas ;
2. Ensure Infineon’s continuous compliance with legal, contractual, and internal security requirements as well as certifiable Security Standards ( ISO27001, TISAX, Common Criteria, GSMA, etc.);
3. Perform internal control / audit activities and facilitate external audits in order to obtain new or uphold already granted Security Certifications;
4. Support the maintenance and improvement of the Verification function and related processes as well as the Cyber & Information security control framework ;
5. Drive the verification automation by supporting the implementation or development of a GRC application.
You have a hands-on approach to work and are able to take responsibility for your own area of expertise. You have a proactive and enthusiastic attitude and can establish a successful collaboration with people across different levels and functions of the organization. Moreover, you have excellent communication skills and enjoy sharing your knowledge and providing guidance to others.
You are best equipped for this position if you have:
6. A degree in Computer Science, Information Technology or an equivalent qualification – ideally with a focus on Cyber / Information Security;
7. At least 3 years of experience as an auditor, expert, or consultant in the area of IT and/or Cyber / Information Security - preferably in an international environment;
8. Knowledge of general Cyber / Information Security Standards such as NIST and ISO27001, and ideally industry-specific Security Standards ( TISAX, Common Criteria, GSMA);
9. Relevant Security Certifications ( ISO27001 Lead Auditor, CISA, CISM, CISSP) – would be a plus;
10. Experience in programming - Python, Java or C++ would be an advantage;
11. The willingness to travel internationally up to 30% (mainly within Europe and America);
12. Fluency in English .
Please send us your CV in English.
Benefits
13. Coaching, mentoring, networking possibilities
14. Wide range of training offers & planning of career development
15. International assignments
16. Different career paths: Project Management, Technical Ladder, Management & Individual Contributor
17. Flexible working conditions
18. Hybrid work model
19. Discount at on-site gym
20. Sabbatical
21. Birthday off
22. Medical coverage
23. Free parking available
24. Health promotion programs
25. Private insurance offers
26. Access for wheelchairs
27. Possibility to work remotely from abroad (EU)
28. On-site canteen available
29. Service anniversary bonus
30. Wage payment in case of sick leave
31. Annual performance bonus