Information security specialist / Security specialist in Lerua Merlen Ukrayina / Leroy Merlin

Leroy Merlin is an international company that offers products and solutions for DIY, decoration, construction and gardening, helping customers create their dream home.

Our employees are the heart of our company and make sure that work can bring pleasure every day!

cool command :)

What will you do?

• Comply with understanding and implementing international cybersecurity standards (such as ISO 270XX, NIST CSF), local laws and GDPR.

• Develop and implement security controls in accordance with international standards.

• Identify, assess and reduce potential cyber security risks in the organization. This involves analyzing security threats, vulnerabilities and potential impact on Leroy Merlin Ukraine systems and data.

• Develop and maintain security policies, standards and procedures to ensure the confidentiality, integrity and availability of "Leroy Merlin Ukraine" digital assets.

• Investigate and respond to security threats and vulnerabilities, and work closely with other SecOps and IT OPS to protect against cyber threats.

• Ensure the security of "Leroy Merlin Ukraine" software and applications by integrating security measures into the development process, conducting security assessments and working closely with software developers and security specialists.

  < /li>

What skills and qualities should you have?

• Education: Higher education in the field of information security (bachelor's or master's) or proven equivalent work experience.

• Work experience: from 2 years.

• Good knowledge and experience with information security standards and best practices: ISO270xx, NIST CSF.

• Experience in planning, researching and developing information security policies, standards and procedures.

• Experience implementing information security controls in accordance with identified risks, policies and security standards.

• Knowledge and experience of information security risk analysis, risk management.

• Proficiency in spoken and written English at a level no lower than Intermediate.

• Curiosity and diligent approach to tasks.

• Ability and desire to constantly learn and improve personal skills.

It will be a plus if you have:

• Digital forensics skills and experience.

• Specialized certifications (eg CISSP, CEH, CISM, CompTIA Security+, ISO/IEC 27001 Lead Implementer, ISO/IEC 27001 Lead Auditor).

If you are interested in joining our great team - we are waiting for your resume :)

Dmytro Goryachev

______________________________________________________________________________________________________________




Leroy Merlin is an international company that offers products and solutions for DIY, decoration, construction, and gardening, helping customers create the home of their dreams.

Our employees are at the heart of our company and are convinced daily that work can be fun!

We offer:

• Cool team :)

• Interesting corporate and social activities

• Official employment

• Health and Life insurance

• Free lunches

• Training and development in an international company

What will you be doing?

• Comply with understanding and implementing international cybersecurity standards (such as ISO 270XX, NIST CSF), local laws, and GDPR.

• Design and implement security controls from international standards.

• Identify, assess, and mitigate potential cybersecurity risks within an organization. This involves analyzing security threats, vulnerabilities, and potential impacts on Leroy Merlin Ukraine systems and data.

• Develop and maintain security policies, standards, and procedures to ensure the Leroy Merlin Ukraine digital assets' confidentiality, integrity, and availability.

• Investigate and respond to security threats and vulnerabilities, and work closely with other SecOps and IT OPS to protect against cyber threats.

• Ensure the security of Leroy Merlin Ukraine software and applications by integrating security measures into the development process, conducting security assessments, and working closely with software developers and security professionals.

  
  

What skills and qualities should you have?

• Education: University degree in security (Bachelor's degree +) or proven equivalent work experience.

• Work experience: 2 to 5 years.

• Strong knowledge and experience with information security standards and best practices: ISO270xx, NIST CSF.

• Experience in planning, researching, and developing security policies, guidelines, and procedures.

• Solid understanding of the latest security principles, techniques, and protocols.

• Knowledge and experience in conducting information security risk analysis risk management.

• Spoken and written English, at least at the Intermediate level.

• Ability to dive into details and learn new knowledge.

Would be a plus:

• Digital forensics skills and experience.

• Have specialized certifications (e.g., CISSP, CEH, CISM, CompTIA Security+, ISO/IEC 27001 Lead Implementer, ISO/IEC 27001 Lead Auditor).

If you are interested in joining our great team - we are waiting for your resume :)

Dmytro Hoiachev