Information Security & Compliance Specialist

Alpega Group

  • Sant Cugat del Vallès, Barcelona
  • Permanente
  • Tiempo completo
  • Hace 29 días
  • Solicite fácilmente
The Alpega Group is looking for an Information Security & Compliance Specialist. This role will be part of the IT organization at Alpega. The role can be based in Barcelona, Vienna, Dornbirn, or Brussels.WHO ARE WEThe Alpega Group is a fast-growing, leading software company that offers modular solutions to manage transportation end-to-end and enable our customers to achieve greener transportation processes, with 35+ years in the business.Find more about our clients and services here:ABOUT THE ROLEAs an Information Security & Compliance Specialist, you will play a key role in maintaining, enhancing, and continuously improving our ISO 27001-certified Information Security Management System (ISMS). You will also support our internal control system, validated annually through SOC 1 / SOC 2 reports, while contributing to regulatory compliance efforts such as GDPR and NIS2.You will be working on...Cybersecurity Governance & Compliance
  • Create, update, and maintain security policies, guidelines, and procedures aligned with industry standards.
  • Support and prepare for external audits and certifications, including ISO 27001, TISAX and SOC 1 / SOC 2.
  • Coordinate incident detection and response activities in collaboration with our Security Operations Center (SOC).
  • Contribute to compliance with NIS2 and GDPR, and other relevant frameworks.
  • Define and track key performance indicators (KPIs) to assess the effectiveness of our Information Security Program and prepare reports for our C-Level management.
Risk Assessment & Management
  • Perform regular information security risk assessments, collaborate with stakeholders, manage and improve our risk and asset registers and develop risk treatment strategies.
  • Monitor and follow up on remediation measures from penetration tests, internal audits, and third-party assessments.
Security Awareness & Consulting
  • Develop and deliver engaging information security awareness and training programs (e-learning, workshops).
  • Promote a culture of security by collaborating with departments across Europe on secure practices in all business processes.
  • Act as an internal consultant, providing support to colleagues and customers on security and compliance topics.
  • Conduct regular internal controls, document results, and handle incoming security-related inquiries.
This role reports directly to the Information Security Officer and works in close collaboration with key internal stakeholders, including Legal, Procurement, Operations, Group IT, and other relevant functions. The position plays a central role in aligning cybersecurity, compliance, and risk management efforts across the organizationLearn more aboutOur commitment to youThe Alpega Group has 500 collaborators with over 40 nationalities, based in our different locations. We are a global team, with different backgrounds, races, faiths, and genders. We commit to ensuring that everyone feels included, has opportunities to learn and grow, and is happy at work.If you require any additional support with your application, reach out to the Talent Acquisition specialist for this position, so we can make arrangements for you.Good luck with your application! We look forward to hearing from you.RequirementsWHAT WE LOOK FOR IN YOU
  • You have a degree in Computer Science, Information Technology, Law, or a related field, with a strong interest in cybersecurity and compliance.
  • You bring 1–3 years of professional experience in Information Security, Compliance, Risk Management, or a similar area.
  • You are familiar with standards and regulations such as ISO 27001, GDPR, NIS2, SOC 2 or TISAX.
  • You possess strong analytical skills, attention to detail, and the ability to create and review policies with precision.
  • You’re a confident communicator with excellent team collaboration skills.
  • You are fluent in English. German is a plus, but not a requirement.
  • Certifications such as CISA, CISM, ISO 27001 Lead Implementer/Auditor, or similar are considered a strong advantage.
BenefitsWHAT WE OFFER
  • A permanent contract with attractive benefits focused on well-being, flexibility, and career development.
  • A diverse, hands-on role with the freedom to take ownership of projects and shape security initiatives.
  • Flexible working hours and a hybrid work model.
  • A truly international work environment, with over 40 nationalities represented in the Alpega team.
  • The opportunity to work within an ISO 27001-certified organization.
  • Exposure to the supply chain and logistics industry, a sector undergoing rapid digital transformation and growth.
  • The opportunity to work cross-functionally across our European organization and be at the forefront of our information security and compliance strategy.

Alpega Group