Security GRC Analyst

Full Time
Barcelona, Spain
7 months ago

Not your usual app. We are the fastest-growing multi-category app connecting millions of users with businesses, and couriers, offering on-demand services from more than 170,000 local restaurants, grocers and supermarkets, and high street retail stores. 

We operate in more than 1500 cities across 25 countries. 

We have a vision: To give everyone easy access to anything in their cities.

YOUR MISSION

Glovo is currently seeking a Security Analyst to focus on today’s evolving cyber security threats. You ensure that policy and compliance documentation, requirements and controls are accurately and timely identified, mapped and communicated to improve security posture. You will be responsible for conducting risk assessments, collaborating with key partners in identifying risk, and documenting requirements for mitigation efforts. Additionally, you will work closely with other members of the Security Team to support security administration tasks, awareness campaigns, and internal security projects.

THE JOURNEY
  • Propose, develop and maintain policies and procedures to improve the security posture.
  • Set up and continuously monitor and report relevant security metrics to provide a holistic insight into Glovo security posture.
  • Assist with the expenses and budget management process for the Security team. 
  • Identify, assess, measure and monitor security risks across Glovo teams.
  • Perform third-party risk assessments.
  • Identify, document and communicate recommended security controls for business units.
  • Support Security team in fostering security culture and designing awareness campaigns. 
  • Work with other stakeholders to ensure compliance with security controls across the organization.
  • Support stakeholders with audit processes and assist with external or internal security compliance requirements.
  • Support security program continuous improvement initiatives.
 WHAT YOU WILL BRING TO THE RIDE
  • BA/BS in Computer Science, Information Systems, or similar field.
  • Minimum 3 years of experience in the field or in a related area.
  • Good understanding of security control frameworks (NIST CSF, CIS/SANS 20, ISO 27001)
  • Previous experience with GDPR and/or PCI DSS.
  • Awareness of security best practices and industry trends.
  • Strong ability to manage and report on multiple projects, prioritizing efforts, managing time effectively, and requiring minimal direction in the execution.
  • Proven problem solving, analytical and investigative skills combined with the ability to develop creative solutions and navigate through ambiguity in a fast-paced, agile environment
  • Proven team player, collaborating well with others to tackle problems in a team-focused dynamic.
  • Excellent English written and communications skills, as well as strong interpersonal and relationship building skills.
  • Familiarity with cloud technologies (e.g., GCP and AWS preferred).
Nice-to-haves: 
  • Professional security certifications (CISSP, CISM, CISA or equivalent).
  • Previous experience with FAIR or similar risk quantification frameworks.
  • Experience with GRC tooling would be a plus (e.g. RSA Archer, SAP GRC, StandardFusion, ServiceNow, etc).
  • Development skills to automate integrations or processes (e.g. python). 
  • Experience with business continuity processes. 
  • Working experience in regulated environments.
 

Even if it seems you don't meet our musts don't let it stop you, we are all about finding the best talent out there! Skills can be learned, and embracing diversity is invaluable.

We believe driven talent deserves:

  • 🌟 An enticing equity plan *if applicable 
  • πŸ’ͺ Top-notch private health insurance to keep you at your peak.
  • πŸ” Monthly Glovo meal benefits so you can test new features in our beta app (and to satisfy your cravings!) 
  • πŸ’³ Discounts on transportation, food, and even kindergarten expenses or office-based nursery. 
  • 🏊 Discounted gym memberships to keep you energized.
  • πŸ–οΈ The freedom to work from home two days a week, and the opportunity to work from anywhere for up to three weeks a year. .
  • πŸ‘ͺ Enhanced parental leave (*if applicable) 
  • 🧠 Online therapy and wellbeing benefits 

We’ll deliver a non-vanilla culture built on talent, where we work to amplify the impact on millions of people, paving the way forward together. 

At Glovo, we truly value diversity for the positive impact it brings to our teams, products, and culture. We're dedicated to providing equal opportunities for talent from all backgrounds. 

Feel free to note your pronouns in your application (e.g., she/her/hers, he/him/his, they/them/theirs, etc).

Delve into our culture by taking a peek at our Instagram and check out our Linkedin and website!