Data Protection & Information Security Analyst
- Bucharest, Romania
- Department: Business Operations
Have you ever worked for a company that actually wanted you to bring your whole self to work every single day?
Tradeshift is a unicorn in the fintech industry. We are disrupting a typically stagnant environment by connecting companies of all sizes and providing them with the platform and network needed to create value from old processes like procurement, invoicing, payments, and workflow. We recognize that business is both messy and social - two revelations that have driven the development of Tradeshift, a platform for all your business interactions.
We support developers, operations, IT and the overall company security posture as well as being responsible for maintaining our compliance program where we have achieved SOC 1 Type II, SOC 2 Type II, ISAE 3402 Type II, ISO 27001 and PCI Level 1 compliance.
As a forward thinking cloud based SaaS company we believe heavily in automation and build our security controls and processes as such is a driving principle for how our program is oriented.
We believe very much in automation as the key to scalable compliance and in finding positive business outcomes over saying “No”. We’re against “checking the boxes” as a way to manage compliance and security and as such are looking for creative problem solvers with a technical background who are as comfortable getting their hands dirty understanding technical solutions as they are with partnering with a diverse set of people to develop effective and scalable compliance controls.
We are looking for a passionate Data Protection and Information Security Analyst. You will become a member of a skilled, cross-functional and self-driven production team that includes developers, designers and business people.
What a day is like:
The information security and compliance teams within Tradeshift partner across the company to help teams understand and mitigate risks related to information security and data protection. We have a robust security program with SOC 1 Type II, SOC 2 Type II, ISAE 3402 Type II, ISO 27001 and PCI Level 1 compliance and look towards a continuous improvement mindset in everything we do. You will lead existing and new initiatives related to security and data protection, assisting with security incident detection and response. You will build controls, training and policies where needed with automation and code-as-policy always being the preferred solution. You will work with existing and new customers to answer any security related questions.
You’re perfect for this role if you:
You're biased toward quick action, while also open to new ideas.
You also have:
Bachelor's degree or equivalent work experience in a security/compliance role
Technical skills are a must have - you should be comfortable speaking about PKI, encryption, systems (ideally Linux ones) and AAA
A desire to build relationships and trust between diverse teams
Familiarity with GDPR requirements
Experience with both auditing and engineering is a big plus
CISSP certification is preferred
Theoretical and practical knowledge around securing systems
Proficiency in working in a cloud driven environment
In-depth knowledge of IS management
Understanding of security standards, i.e. SOC 1 / SOC 2, ISO 27001
Strong risk management and IT security skills
Our Bucharest office is full of “rebels” - people who like to challenge the status quo. We’re a fun group always looking for ways to make an impact and we enjoy the freedom and autonomy we are allowed in our jobs.
Our culture began day one when three Danes poured their brains, heart, and guts into creating a platform that could connect every business in the world. We expect each employee to approach their work with the same amount of pride and passion. One day you might find us having a ping pong match in the middle of the work day, and then you’ll find us handing off projects to colleagues in different time zones so we can continue progress around the clock.
TradeShifters come from various backgrounds and nations, and we all thrive off challenging the status quo. We take pride in nurturing employee happiness, encouraging personal development, and welcoming teammates from all walks of life.
We value diversity and we do not discriminate on the basis of race, religion, color, national origin, gender, sexual orientation, age, marital status, veteran status, or disability status.
Why you might like working here:
- You love autonomy and the freedom to get your work done how you want
- You like sharing your opinions and feeling like they matter
- You want to work for a company that requires you to bring your whole self to work every day: brains, heart, and guts.
- Ambitious international startup, and agile environment in Bucharest, Romania
- Competitive compensation package
- Career and professional development opportunities (workshops, trainings etc.)
- Trips to design-camps for working with and learning from professionals in other countries
- Flexible work hours
- Company laptop provided
- Medical Subscription
- Meal tickets of 15 lei value for each working day
- Free drinks & snacks daily, fresh fruits every Monday and Wednesday
- Safe outdoor bike parking spot
- Access to Bookster
- Friendly and relaxed working atmosphere
- Relaxing spots, games - ping pong, board games
- Fun team-bonding events such as Team Camps, Hack-a-thons, Game & Field Days
- Welcome Breakfast, Happy Hours, Birthdays Celebrations and more!