Organizational Security Auditor - 360Learning Paris, Remote Bookmark Share Print 121 0 0

Listing Description

Introduction to the Team & Role

With our increasing numbers of customers (1500+ client companies in 160 countries, 2.5M registered users, 30k daily active users) and increased user requests, the 360Learning security became a major challenge in 2022. 

Our Chief Security Officer and our Security Engineer are already working on building the security governance, the process and started conducting our own security audits. But as 360Learning keeps scaling, and plans to obtain security certification by 2023, the Security team needs to grow as well, the addition of a brand new Organizational security auditor is key to our strategy. 
Within the security team, with the help of the CISO, you will:
- Adopt a global vision of the information system to be audited
- Define the audit and control plans within the organization
- Conduct periodic security audits, including document reviews, evidence collection, access to security tool consoles and reports, or the use of automated compliance monitoring tools
- Conduct and document security process audits, analyze documentation and evidence, conduct team interviews
- Evaluate the proper application, effectiveness and compliance of the company's security policies and procedures
- Collaborate with Engineering teams to implement recommendations

What you'll do

Within 1 month, you will:
  • Become a Trello expert through our onboarding process
  • Understand our infrastructure and our current security methodologies
  • Meet the global team through virtual coffee meets and happy hour

    • Within 3 months, you will:
  • Have tamed our ISMS tool 
  • Conduct your first internal audits to identify security flaws
  • Improve our evidence collection to make audits easier and more efficient

    • Within 6 months, you will:
  • Have collected all processes and improved some
  • Establish a compliance plan to prepare for audits and give visibility to the board

    • Within 12 months, you will:
  • Have a clear visibility on all non compliant process and have given insights to improve them
  • Be ready for an ISO 27001 audit

    • The Skills Set
  • Knowledge of governance, norms and standards: mastery of audit methodologies
  • Knowledge of the information system and architecture principles
  • Mastery of the fundamentals in the main areas of information system security
  • Knowledge of governance, norms and standards in the field of security: ISO 27001
  • Ability to synthesize and popularize for non-technical audiences
  • Writing of reports adapted to different levels of interlocutors
  • fluent English (US/UK) / B2 level or equivalent (FR)
  • Enthusiasm for our working environment explained here:  https://bit.ly/Convexity_360L 

    • What We Offer
  • Compensation: Package includes base salary, a variable component and equity
  • Benefits: Work From Home stipend, RTT, lunch vouchers, medical insurance, gym subscription, 1 month parental leave for the second parent
  • Balance: Flexible hours, full remote work possible anywhere in France
  • International team: Offices in London, New York and Paris
  • Culture: A framework that will make you successful - envision what's it like to join 360Learning from onboarding to ramp-up, and beyond: https://360learning.com/blog/360learner-journey/

    • Interview process
  • Call with our recruiter
  • Discovery Meeting with Guillaume, our CISO
  • Case study and its debrief
  • Clarification Meeting with Nathan, our Sales Engineering Director
  • Interview with Fabrice, our Engineering Director
  • Offer !
    • Who We Are
    360Learning empowers Learning and Development teams to drive culture and growth through Collaborative Learning. Our learning platform combines collaborative tools with the power of an LMS, enabling high-growth companies to unlock learning based on collective expertise instead of top-down knowledge. 360Learning is the easiest way to onboard new employees, train customer-facing teams, and develop professional skills–all from one place.
    360Learning powers the future of work at 1,500 organizations, including Toyota, Criteo, and Airbus. Founded in 2012, 360Learning has raised $240 million, with 300+ team members across New York, Paris, and London. You can learn more in this blog post from our CEO: https://360learning.com/blog/top-down-management/.

    Learning Includes Everyone.
    In concert with our culture, 360Learning believes learning includes everyone and that means embracing the strengths of diversity, connectedness, and inclusion. Through conscientious efforts, our global footprint celebrates cultures, perspectives, and experiences from all over the world to support our platform that is built for all regardless of race, ethnicity, gender identity or expression, sexual orientation, religion, age, neurodiversity, disability status, citizenship, veteran status or any other aspect which makes an individual unique or protected by laws and regulations in the locations where we operate. Thus, 360Learning is proud to be an equal opportunity workplace, and we commit to continue this throughout our processes for recruitment, compensation, benefits, performance, promotion, and all other conditions and terms of employment. We want to learn from and with you!

    Listing Details

    • Citizenship: Not Provided
    • Incentives: Not Provided

     

    • Education: Not Provided
    • Travel: Not Provided
    • Telework: Not Provided

    About Us

    NinjaJobs is a community-run job platform developed by information security professionals. Our unique approach of focusing strictly on cybersecurity positions allows us to personalize the user experience.

    Useful Links

    Our Contacts

    1765 Greensboro Station Pl.
    Suite 900
    Tysons Corner Va 22102

    (703) 594-7765

    requests@ninjajobs.org
    www.ninjajobs.org
    Chat with us!