Cybersecurity compliance officer

Take a step forward and let Edenred surprise you.

Every day we deliver innovative solutions to improve the life of millions of people connecting employees companies and merchants all around the world.

We know there are hundred ways for you to grow. With us you will expand your skills in a multicultural challenging and dynamic environment.

Dare to join Edenred and get ready to thrive in a globalcompany that will offer you endless opportunities.

Edenred is all about meritocracy. You come as you are and you contribute. Indeed the Edenred Group recognizes recruits and develops all talents and singularities.

We are committed to preventing all forms of discrimination and to providing all our candidates with equal opportunities regardless of their gender and gender expression disability origin religious belief and sexual orientation or any other criteria.

Cybersecurity Compliance officer

Edenred Digital Center Romania

• WHAT IS EDENRED

Edenred is a leading digital platform for services and payments and the everyday companion for people at work connecting more than 60million users and more than 2million partner merchants in 45countries via 1million corporate clients.

Edenred offers specific-purpose payment solutions forfood(such as meal benefits)engagement(such as gift cards and engagement platforms)mobility(such as multi-energy solutions including EV charging maintenance toll and parking) andcorporate payments(such as virtual cards).

True to the Groups purposeEnrich connections. For good. these solutions enhance users well-being and purchasing power. They improve companies attractiveness and efficiency and vitalize the employment market and the local economy. They also foster access to healthier food more environmentally friendly products and sustainable mobility.

Edenreds 12000 employees are committed to making the world of work a connected ecosystem that is safer more efficient and more responsible every day.

In 2024 thanks to its global technology assets the Group managed close to 45 billion in business volume primarily carried out via mobile applications online platforms and cards.

Edenred is listed on the Euronext Paris stock exchange and included in the following indices: CAC 40 CAC 40 ESG CAC Large 60 Euronext 100 Euronext Tech Leaders FTSE4Good DJSI Europe Index DJSI World Index and MSCI Europe.

• The right spot for tech talent

Take a step forward and let Edenred surprise you. Every day we deliver innovative technological solutions to improve the life of millions of people connecting employees companies and merchants all around the world. We know there are hundred ways for you to grow. With us you will expand your skills in a multicultural challenging and dynamic environment. As we strive to keep our tech talent at the forefront of innovation you will have continuous training and experience with the most advanced technologies.

Dare to join Edenred and get ready to thrive in a global company that will offer you endless opportunities.

• YOUR ROLE

As a Cybersecurity Compliance Officer you will play a key role in supporting IT governance and compliance activities across the organization.

You will collaborate on engaging and coordinating the Cyber GRC community promoting the exchange of best practices and strengthening collaboration across the Group. Working closely with cross-functional teams you will help develop implement and enforce robust cybersecurity policies and procedures. Your responsibilities will include managing IT security documentation supporting internal and external audits and overseeing the production of CSR IT Security KPIs. Additionally you will assist Business Units in completing security questionnaires and contribute to streamlining the risk acceptance process and tooling ensuring continuous improvements in the Groups cybersecurity posture.

He/she will be in charge of:

• IT/Cyber Compliance Domain Co-Leadership: Collaborate with the GRC Team to develop and actively engage the Cyber GRC community through structured communication channels (e.g. Team Groups/Chats scheduled calls) to share practices policies strategies and updates. Maintain a comprehensive map of current GRC practices certifications tools and use cases and support the maintenance of the Cyber Control Framework including the assessment and auditing of external IT suppliers.

• IT Security official documentation & normative documents management: Manage and ensure the accuracy and relevance of IT Security documentation by collaborating with domain leads and stakeholders (e.g. DPO CISO). Work with policy owners to assess update priorities (new or modified policies) and maintain an audit trail of changes. Support the alignment of policy rules with the Cyber Control Framework ensuring it is consistently up to date.

• IT Audit support: Assist in internal audit missions by supporting Business Units in addressing recommendations from the Internal Audit team with an emphasis on regular follow-ups within the Global Technology perimeter. Act as the key contact for external audits and ensure the timely delivery of IT security audit reports. Prepare and present monthly IT findings reports to BL/region CISOs during steering committees.

• CSR KPI production: Be responsible for producing and maintaining CSR IT Security KPI documentation in close collaboration with the Edenred CSR team with a focus on compliance with ISO 27001 and PCI-DSS standards for authorization platforms.

• Cyber Risk Management support: Support the Risk Acceptance process by reviewing and challenging forms submitted by Business Units for completeness and alignment with requirements. Contribute to the collection verification and challenge of evidence related to the Cyber Control Framework while actively identifying and experimenting with automation opportunities to enhance workflows.

• Questionnaire support: Assist in completing group and Business units-level security questionnaires and ensure all responses adhere to GRC guidelines. Provide support for completing cyber insurance questionnaires on behalf of the Group.

• Tooling: Lead the identification selection and implementation of innovative tooling solutions to enhance operational efficiency with a particular focus on optimizing and automating the security questionnaire process.

Key stakeholders:

The Cybersecurity Compliance Officer will interact mainly with:

• Group CISO
• Regional / BU CISO
• GRC Security Leaders
• Head of Security Centers of Expertise (CoE) and their teams
• IT / Project teams in Global Technology and BU
• Group Internal Audit / External auditors

• YOUR PROFILE

The successful candidate will be an experienced information security professional (2-3 years) with a proven experience in a transversal/international role and the ability to engage with senior managers when needed.

Bachelors degree in Cybersecurity or related field preferred.

You have demonstrated:

• A strong understanding / knowledge in Cybersecurity
• Experience in writing policies
• Excellent relationship / communication skills (oral / written)
• An analytical mind
• Proactivity agility & pragmatism
• Ability to work in multi-cultural environments
• A result-oriented mindset and can-do attitude
• Team spirit

Languages required: Romanian English

• EXPECTED START DATE

As soon as possible

• OTHER DETAILS

• Location: Bucharest Romania

• OUR COMMITMENT

Edenred is all about meritocracy. You come as you are and you contribute. Indeed the Edenred Group recognizes recruits and develops all talents and singularities.

We are committed to preventing all forms of discrimination and to providing all our candidates with equal opportunities regardless of their gender and gender expression disability origin religious belief and sexual orientation or any other criteria.

Apply now and Vibe with Us!