Information Security Analyst at Entercard

The Team
The Risk Control (RC) function supports Entercard with independent oversight and advice and is following up on risks to which the business is exposed or could become exposed to.
Entercard has implemented the three lines model, in which RC is part of the second line and within the responsibility of the Chief Risk Officer (CRO).
RC consists of three specific areas: Financial Risk, Operational Risk and Information Security that together ensure a sound risk governance, framework and processes enabling Entercard to effectively and efficiently manage all of its risks.
We are now looking for a (junior) Information Security Specialist to join the team.
The Position
As part of the second line, this position is fundamental to ensure control over information security risk at Entercard. This role contains the following responsibilities:
Co-develop and maintain the IT and Information Security Risk (ISR) framework
Support the IT function and Information Security department in first line with ensuring that the relevant (regulatory) requirements and common practices for IT and ISR are implemented.
Challenge the organisation on risk and control assessments and conduct independent monitoring activities that first line operates its business within set risk appetite and tolerance levels.
Support with issue remediation and action follow-up related to the IT and ISR area.
Report on IT and ISR risks, issues and actions and provide relevant input for the Enterprise Risk Management (ERM) reports.
Contribute to building a sound risk culture and increasing the employee security awareness and security posture of Entercard by co-developing trainings and promoting security best practices.

You
Have a university or similar degree in a relevant field.
Have a technical background and practical knowledge of IT technologies and solutions.
Possess a common understanding of evolving technologies like Cloud, Artificial Intelligence, Block chain, etc.
Have a continuous learning mindset and embrace change as part of your daily work.
Are analytical with an ability to grasp new concepts quickly.
Are result-driven and solution-oriented with an ability to work in a fast-paced environment.
Are self-motivated with an ability to build good relationships with stakeholders.
Have excellent communication skills and are a great team player.
Are willing to travel within the Nordic region.
Are proficient in English.
Have relevant work experience in an ISR role within a regulated financial institution, preferred but not required.
Have knowledge of relevant regulations/legislations (GDPR, PCI-DSS, PSD2) and common good practices (COBIT, ITIL, ISO 2700X), preferred but not required.

Company information
Entercard is a finance company with a team of curious people passionate about data. We strive to make the everyday lives of our customers easier by creating smart payment and financing solutions.
Today we issue credit cards and consumer loans to 2 million customers in Sweden, Norway, and Denmark.