Abogado@ Concursal / Procesal

Descripción del trabajo

Do you dare to lead the digital transformation to create a more sustainable world?

At Schneider Electric, we are the leading digital partner in sustainability and efficiency for businesses, communities, and individuals. Our goal is for all people to be able to make the most of our energy and resources through the integration of processes, software, big data, and energy technologies that enable integrated management of buildings, industries, and cities. We are present in over 110 countries with a diverse and disruptive team of over 150,000 people. If you are seeking an opportunity to propel your career and challenge your creativity, we want to meet you!

Schneider Digital is the digital department of Schneider Electric, leading the digital transformation in the company by giving support globally to our internal teams and our clients. Schneider Digital consists of 6 Digital Hubs worldwide which are strategically located to ensure a 24 / 7 support across the company (France, China, India, USA, Mexico and Spain). Our Digital Hub in Barcelona is formed by +450 employees working in strategic projects and different roles such as Data, Cybersecurity, ERP, Cloud, Infrastructures, IT Project Management or Digital Marketing.

The Enterprise IT Risk & Certification organization is seeking a Cybersecurity Certification Engineer to lead the execution of digital certification of SE applications. In this role, you will engage with different stakeholders and support SE in improving the security and privacy posture of the technology landscape, whether it is internally built or externally purchased. You will provide operational support, contribute to documenting the controls & processes, provide leadership and transparency throughout the Certification lifecycle, and ensure information and evidence provided meet our internal security and privacy policies. The key to your success lies in working proactively with all stakeholders. This role offers the opportunity to work in a fast-paced, international environment where both individual drive and team collaboration are key. If you are passionate about developing clear, quality solutions for complex problems, we hope you will consider joining our Enterprise IT Risk & Certification organization.

What will you do?

• Handle cybersecurity and privacy (certification) engagements end to end for SE’s digital assets (Software Applications, Technology Platforms, Schneider Electric Digital Offers, APIs) in the relevant region or assigned business domain.
• Assist project and product delivery teams in identifying IT security and data protection requirements and embedding the required controls into the digital asset.
• Proactively communicate and work with all different stakeholders.
• Confirm compliance with security requirements prior to release or deployment of the product, or ensure sufficient compensating controls are in place to mitigate identified risks.
• Provide application security and privacy advisory services to products and software developed in-house or procured through third-party vendors.
• Perform cloud security assessments for Third Party SaaS vendors through the CSA framework.
• Conduct risk assessments and communicate the outcomes to IT and Business application owners.
• Understand the general IT security policies of the company.
• Conduct awareness sessions and webinars for stakeholders in the respective geographies on cybersecurity and privacy requirements.
• Work closely with project delivery teams, perform everyday communications with project managers and technical specialists, introduce the certification engagements and ensure compliance is achieved before applications are put into production.

What qualifications will make you successful for this role?

• Education: Information Technology, Information Security, Cybersecurity and Risk Management degrees.
• In-depth knowledge and experience in Information Security Management principles and standards, including threats and vulnerabilities, risk assessment and mitigation, security policy and security management processes.
• Expertise in ensuring compliance with personal data protection legislation in EU and relevant regions.
• Understanding or experience in Cloud Security Assessment, Vulnerability Management, NIST Cybersecurity Framework, Critical Security Controls, DevSecOps, OWASP, and threat modeling methodologies is an advantage.
• Fluent English is mandatory.

Experience And Professional Certifications

• Master’s Degree or higher in IT Management, Computer Science, Cybersecurity or another relevant field.
• 5+ years’ experience in general IT management, security, and data protection.
• Desired certifications include CISSP, CIPP, CISM, CCSP, OSCP, CEH, or other product-specific security certifications (e.g., Microsoft or AWS).

What will you get?

We adapt to you:

• Flexible schedule to accommodate personal needs and responsibilities.
• Hybrid work plan allowing work from home.
• Holy Pack for purchasing additional vacation days.
• Floating Holidays for exchanging holidays for other days.
• Sabbatical Pack for requesting up to 2 months of unpaid leave.
• Global Family Leave Policy for flexible paid conditions.

We take care of you:

• Access to health and wellness platform Wellwo for virtual medical care and psychological support.
• Agreement with Wellhub for access to gyms and sports centers.
• Medical service at your workplace.
• Open Talent Market for connecting with job opportunities and projects.
• Opportunity to be a shareholder of Schneider Electric.
• Recognition program for celebrating talent and success.
• Life insurance for protection.
• Flexible Remuneration Plan for choosing various options.
• Club Schneider for special discounts at stores and services.

Looking to make an IMPACT with your career?

At Schneider Electric, our values and behaviors are the foundation for creating a great culture to support business success. We believe that our IMPACT values – Inclusion, Mastery, Purpose, Action, Curiosity, Teamwork – starts with us. Become an IMPACT Maker with Schneider Electric – apply today!

You must submit an online application to be considered for any position with us. This position will be posted until filled.

Schneider Electric aspires to be the most inclusive and caring company in the world, providing equitable opportunities to everyone, everywhere. We believe our differences make us stronger and are committed to championing inclusivity in everything we do.

At Schneider Electric, we uphold the highest standards of ethics and compliance. Our Trust Charter is our Code of Conduct and demonstrates our commitment to ethics, safety, sustainability, quality, and cybersecurity.

Schneider Electric is an Equal Opportunity Employer. We provide equal employment and advancement opportunities regardless of any legally protected characteristic.