Information Security Auditor

Security Porto, Portugal


Description

The role

The security team in Farfetch is seeking a passionate Security Auditor.


What you'll do

  • Recommends and implements changes to enhance systems security and prevent unauthorized access;
  • Administrates and disseminates security policies and procedures by reviewing and auditing security policies;
  • Monitors compliance with legal requirements;
  • Helps to increase Information Security Awareness within the business;
  • Performs risk assessments and other security reviews as required;
  • Helps to maintain information security policies and coordinates company-wide information security controls to protect the integrity of Farfetch's assets.


Who you are

  • Degree in Computer Science or higher in an Information Security field
  • Background in software development or systems administration
  • More than 4 years in a similar position
  • Good understanding of network protocols, design, and operations;
  • Working knowledge of Security principles, techniques, and technologies
  • Certifications on Information Security (CISA, CEH or similar)
  • Working knowledge of COBIT and ISO 27001, policy and procedure review and document management, gap analysis
  • Good understanding of risk-assessment methodologies (OCTAVE, NIST SP 800-30)
  • Experience in Data Privacy impact assessment is a plus
  • Experience in Identity Management projects or Cloud Access Security Broker is a plus
  • Fluency in English (written and spoken)