European Information Security Engineer

You want to be an important member of a strong team of other decision makers who take pride in their work and support each other. The European Manager - Information Security role reports to the Senior Manager of Information Security and will be a key member of the Simpson Strong-Tie Information Security team. You will be one of the technical security leads for the security and compliance systems, assisting and driving the strategic and technical direction of the Information Security Program at Simpson. This is a hands-on technical management role with responsibilities including Information Security direction and management, security and compliance systems, security architecture and design, monitoring the enterprise for vulnerabilities, assessing risks, and continually evaluating and maturing the information security program as the cyber-security landscape continually changes.

You will provide strong direction, guidance, and provide technical contributions to the Simpson Information Security program, including the integration of European compliance processes into our global security framework. You will need to be self-motivated and have a deep understanding of information security and compliance across various regions and across multiple enterprise system disciplines. You must also have a strong business acumen, strong relationship building skills, excellent communication skills and an understanding of general NIST security frameworks and controls.

WHAT YOU’LL BE DOING (% of Time)
Help identify risks, implement and maintain solutions to mitigate these risks, and support a comprehensive information security program across multiple business segments, multiple cultural and country boundaries, and across the European Simpson technology environment.
- Provide guidance for privacy and security to ensure a security-first posture for the integrity, confidentiality and availability of information owned, controlled, or processed by the organization under the global Simpson Information Security Framework strategy and program. (30%).
- Initiate, implement and drive information security projects supporting existing, changing, and emerging information security threats and technologies (15%).
- Create and manage information security awareness training programs for employees, contractors, and approved system users (15%).
- Perform information security risk assessments and coordinate the performance of 3rd-party internal and external network and systems vulnerability assessments (15%).
- Mitigate threats and risks as identified by risk assessments and audits (15%).
- Audit, confirm and ensure IT compliance with Data Privacy requirements, GDPR and SOX compliance and other cyber security and data protection compliance laws, such as PCI (10%).DESIRED SKILLS AND EXPERIENCE

If you can do everything listed above, you’ve got what it takes. Perhaps some of the following would be helpful too:

- Bachelor Degree or equivalent combination of education, training, and experience required
- Certified Information Systems Security Professional (CISSP) or similar certification required
- 2+ years of progressively evolving experience with information security, risk management, compliance, and privacy of non-public personal data.
- 2+ years of experience with IT security and privacy risk assessments and audits.
- Writing Skills: Ability to write in a clear, concise, organized and convincing manner for the intended audience.
- Speaking Skills: Ability to effectively present information to large or small groups including management, clients, and other employees.
- Problem Solving: Ability to identify options for creatively solving a problem. Proactively anticipate problems and correct situations.
- Teamwork: Ability to work to build consensus within stakeholder groups and the department.
- Self-Management: Ability to manage multiple projects and competing priorities. Ability to set priorities, goals, and timetables to achieve maximum productivity. Strong organizational and planning skills.
- Staff Management: Ability to establish an effective, professional, and positive relationships with staff and the ability to mentor skills and develop of direct reports.Travel

This position requires domestic and international travel up to 25% of the time.
Work Status & Location
This full-time position is located in France. Remote work /hybrid work is an option and consideration.
Relocation
Relocation is not available for this position.
We are looking forward hearing from you