Information Security Officer

Job Title: Information Security Officer

Location: 100% remote working, Madrid, Spain, UK, Europe

Job Type: B2B Freelance contract – until December 2025 – extension likely

Working setup: 100% remote working

Language: English, Spanish, (French or Italian nice to have)

Industry Sector: Financial Services

Candidates must have the right to work in the EU or UK

Introduction: My longstanding client is urgently seeking an Information Security Officer to join their team on a long-term contract role until the end of 2025, extensions highly likely.

The successful Information Security Officer (ISO) will support the Regional Information Security team across the EU/UK in ensuring the enforcement of information security controls, incident management, regulatory compliance, and cybersecurity awareness across group legal entities.

Key Responsibilities:

1. Assist in the implementation and monitoring of information security policies and controls to protect data and systems.
2. Support the coordination of cybersecurity incident response activities and follow-up actions.
3. Help prepare security reports and risk metrics for leadership to track cybersecurity effectiveness.
4. Contribute to regulatory audits and compliance activities, working with Privacy, Compliance, and Security teams.
5. Assist in tracking and implementing regulatory changes, such as DORA, Operational Resilience, and the EU AI Act.
6. Support security assessments to evaluate the effectiveness of controls that protect Confidentiality, Availability, and Integrity of information and systems.
7. Provide security guidance on EMEA business and technology projects to ensure compliance with security best practices.
8. Help maintain governance processes and reporting structures within the EMEA region.

Required Qualifications, Skills and Experience:

1. Knowledge & Experience of information security, risk management, or IT compliance.
2. Understanding of security frameworks, audits, or regulatory requirements in a corporate setting.
3. Familiarity with cybersecurity concepts, risk assessment methodologies, or incident response processes.
4. Experience with security tools, cloud networking, or IT service management platforms (e.g., ServiceNow, Microsoft Office Suite).
5. Strong analytical and problem-solving skills, with attention to detail.
6. Security-related certifications (e.g., CompTIA Security+, ISO 27001 Foundation, or CISMP) are desirable but not required.
7. Fluency in English essential (Spanish, Italian, or French is a plus).

This role is a great opportunity for individuals looking to develop their career in cybersecurity, compliance, and information security risk management within a regulated financial environment.