CrawlJobs Logo

IT Security Control & Policy Expert

vodafone.com Logo

Vodafone

Location Icon

Location:
Romania , Iasi

Category Icon
Category:
IT - Administration

Job Type Icon

Contract Type:
Not provided

Salary Icon

Salary:

Not provided
Save Job
Save Icon
Apply Position

Job Description:

We are seeking an IT Security Control and Policy professional to ensure full adherence to security policies and compliance frameworks across Vodafone organisations. The role focuses on assessing and improving internal controls, aligning with international standards such as ISO/IEC 27001 and ISO/IEC 22301, supporting internal and external audits, and collaborating closely with Cyber Security and technical teams. The individual will also define remediation actions, support automation initiatives, and help mitigate risks across infrastructure, applications, and operational environments.

Job Responsibility:

  • Coordinate and monitor adherence to security controls and policies across Vodafone organisations
  • Conduct regular reviews of processes, identify audit findings, and define improvement initiatives
  • Facilitate communication between departments, auditors, and relevant stakeholders
  • Review security documentation, ensuring alignment with impacted teams and accurate collection of requirements
  • Define corrective and preventative actions for identified risks and ensure completion within agreed timelines
  • Develop automated workflows to support security control assessments
  • Work with databases for design and modelling to improve data accuracy in control processes
  • Support the implementation and assessment of controls, including participation in technical discussions
  • Contribute to integration activities such as API-level data flows using TypeScript and NestJS
  • Prepare and submit structured evidence packages for internal and external audits
  • Conduct risk assessments and support risk management initiatives
  • Develop pipelines to support data ingestion for security control assessments

Requirements:

  • At least five years of experience in IT or datacentre environments
  • Strong knowledge of servers, compute environments, storage, databases, networks, and private/public cloud technologies
  • Hands-on experience with compliance and security frameworks, including ISO 27001, SOX, and PCI‑DSS
  • Strong organisational and self‑management skills, with the ability to manage multiple priorities
  • Communicate clearly and collaboratively with stakeholders at all levels
  • Fluent in English
  • Technical expertise, including experience in Linux, containerisation, microservices, and full‑stack development
  • Hold relevant industry certifications such as ITIL v3 – ST, SO, or ISO/IEC 2000 Consultant
What we offer:
  • Hybrid way of working: 2 days per week/ 8 per month
  • Medical and dental services
  • Life and hospitalization insurance
  • Dedicated employee phone subscription
  • Take control of your benefits and choose any of the below options: MEAL TICKETS/ PRIVATE PENSION/VACATION VOUCHERS/ CULTURAL VOUCHERS within the budget
  • Special discounts for gyms and retailers
  • Annual Company Bonus
  • Ongoing Education – we continuously invest in you to ensure you have everything needed to excel on the job and enhance your skills
  • You get to work with tried and trusted web-technology
  • We let you write your own story by planning vacations: go for a trip, experience new things, have fun and enjoy your 23 days off
  • Special Paternal Program - 4 months of paid paternity leave

Additional Information:

Job Posted:
February 16, 2026

Employment Type:
Fulltime
Work Type:
Hybrid work
Icon
Vodafone - All Job Offers
Job Link Share:
Copy Link Icon
Facebook Icon Twitter Icon LinkedIn Icon

Looking for more opportunities? Search for other job offers that match your skills and interests.

Briefcase Icon

Similar Jobs for IT Security Control & Policy Expert

Cyber-Security Policy Administrator

This position is for a Cybersecurity Policy Administrator supporting the ALTESS ...
Location
Location
United States
Salary
Salary:
Not provided
e-9corporation.com Logo
E9 Corporation
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • DoD 8570.01-M IAM level II certification
  • CompTIA Security+
  • Computing Environment (CE) Certification (i.e., MCSE, Server+, etc.) – can be waived for 30 days after project join date
  • Mid to senior level Cybersecurity Policy Administrator experience in a cloud environment
  • Strong verbal and written communication skills
  • Experience effectively managing multiple large-scale projects
  • Understanding of network, storage, server and application technologies
  • Working knowledge of DoD STIGs, and IA Vulnerability Management (IAVM)
  • Information Assurance Engineer – Senior: Masters +10yrs, or Bachelors +12yrs
  • Information Assurance Engineer – Intermediate: Bachelors +5yrs or Associates +7yrs
Job Responsibility
Job Responsibility
  • Serve as overall subject matter expert on Cybersecurity Policy Administration
  • Work between technical and policy teams to implement, maintain and monitor technical security configuration controls, including: STIGs, SRGs and other industry security hardening guidance
  • Work between technical and policy teams to successfully implement and manage requirements for maintaining cloud P-ATO, ATO and security control inheritance capabilities
  • Collaborate with internal and external parties to transform high-level technical objectives into comprehensive technical requirements
  • Act as the ISSO for hosted systems, assuming the responsibilities as outlined in AR 25-2
  • Assist hosted customers in obtaining and maintaining RMF for DOD IT and other certifications as required
  • Update and/or assist the hosted system’s personnel in updating artifacts of the accreditation package and store the artifacts in organizationally defined repository
  • i.e., system diagram (logical and physical) Hardware/Software/Firmware Inventory, Interface & Ports, Protocols and Services listing, etc.
  • Assist in the preparation of network infrastructure specifications or designs incorporating required information security features
  • Review and evaluate Information Systems Design Plans, Continuity of Operation Plans, Communication Plans, engineering change proposals and configuration changes for compliance with relevant security regulations, policies and best industry practice
Read More
Arrow Right

Cybersecurity Risk and Controls Framework Expert

Cybersecurity Risk and Controls Framework Expert to analyse the regulatory compl...
Location
Location
United States , Spring
Salary
Salary:
105500.00 - 243000.00 USD / Year
https://www.hpe.com/ Logo
Hewlett Packard Enterprise
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's degree in Information Security, Information Technology, Risk Management or a related field, or equivalent experience
  • CISSP, CRISC, or similar certification
  • 5-7 years of experience in Information Security, IT Governance, and/or Risk Management
  • 5+ years of experience working with various industry standards and frameworks on risks and controls (e.g. ISO 27001, NIST CSF, COBIT)
  • Expert in a broad range of Information Security domains (e.g., Application Security, Cloud Security, Network Security, Data Security, Infrastructure Security)
  • Strong understanding of cybersecurity control frameworks (e.g., NIST CSF, ISO 27001)
  • Proven experience in risk assessments and analysis
  • Proven experience in defining and implementing cybersecurity policies, standards and guidelines across multiple platforms
  • Strong organizational skills and attention to detail
  • Ability to work effectively with technical and non-technical stakeholders
Job Responsibility
Job Responsibility
  • Support Governance, Risk and Compliance (GRC) leadership in delivering various risk overview summaries
  • Contribute to the development of the Cyber risk governance framework
  • Facilitating a gap analysis of the current processes against the Risk management framework
  • Provide subject matter expertise on the control framework, policies, standards and guidelines
  • Analyse the current suite of controls against the control framework
  • Ensure that changes to risk governance frameworks are effectively communicated
  • Work with regional representatives to coordinate the scanning for regulatory changes related to cybersecurity
  • Provide expert opinion on HPE's risk and effectiveness of our policies and standards
  • Support the handling of questions pertaining to cyber policies and standards from regulators, partners and customers
  • Deliver presentations and updates to key business and technology stakeholders
What we offer
What we offer
  • Health & Wellbeing benefits
  • Personal & Professional Development programs
  • Unconditional Inclusion environment
  • Comprehensive suite of benefits supporting physical, financial and emotional wellbeing
  • Fulltime
Read More
Arrow Right

Cybersecurity Risk and Controls Framework Expert

We are seeking a Cybersecurity Risk and Controls Framework Expert to analyze reg...
Location
Location
United States , Spring
Salary
Salary:
105500.00 - 243000.00 USD / Year
https://www.hpe.com/ Logo
Hewlett Packard Enterprise
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Expert in a broad range of Information Security domains (e.g., Application Security, Cloud Security, Network Security, Data Security, Infrastructure Security)
  • Strong understanding of cybersecurity control frameworks (e.g., NIST CSF, ISO 27001)
  • Proven experience in risk assessments and analysis
  • Proven experience in defining and implementing cybersecurity policies, standards and guidelines across multiple platforms
  • Strong organizational skills and attention to detail
  • Ability to work effectively with technical and non-technical stakeholders
  • Excellent documentation, communication, and problem-solving skills
Job Responsibility
Job Responsibility
  • Support Governance, Risk and Compliance leadership in delivering various risk overview summaries
  • Contribute to the development of the Cyber risk governance framework by leveraging existing frameworks
  • Facilitate a gap analysis of current processes against the Risk management framework
  • Provide subject matter expertise on the control framework, policies, standards and guidelines
  • Analyze current controls against the control framework
  • Ensure effective communication of changes to risk governance frameworks
  • Work with regional representatives to coordinate regulatory scanning
  • Provide expert opinion on HPE’s risk and effectiveness of policies
  • Handle questions on cyber policies and standards
  • Deliver presentations and updates to key stakeholders
What we offer
What we offer
  • Health & Wellbeing
  • Personal & Professional Development
  • Unconditional Inclusion
  • Fulltime
Read More
Arrow Right

Senior Microsoft Security Engineer

We are seeking an experienced Senior Microsoft Security Engineer to lead the des...
Location
Location
United States of America , Phoenix
Salary
Salary:
Not provided
https://www.circlek.com Logo
Circle K
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Strong background in Microsoft 365 security
  • experience with Data Security Posture Management (DSPM)
  • experience with Data Loss Prevention (DLP) strategies
  • ability to design and implement security measures for AI systems
  • knowledge of Microsoft Copilot and associated data security technologies
  • ability to collaborate with cross-functional teams to create and adhere to data policies, standards, and controls.
Job Responsibility
Job Responsibility
  • Lead the design, implementation, and management of security measures for enterprise AI systems
  • collaborate with IT, DevOps, AI Council, and compliance experts to create and follow data policies, standards, and controls.
  • Fulltime
Read More
Arrow Right

Senior Cybersecurity Engineer

As a Senior Cybersecurity Engineer, you will be at the forefront of driving secu...
Location
Location
United States , Bellevue; Overland Park; Frisco; Herndon
Salary
Salary:
103400.00 - 186400.00 USD / Year
https://www.t-mobile.com Logo
T-Mobile
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's Degree Computer Science or Information Technology or equivalent work experience
  • 4-7 years Experience in info security technology or related field
  • Experience with incident handling for Security breaches
  • Expert in security subject areas
  • 2-4 years Technical Project Management
  • Experience with high level design architecture, security technologies, Networking, web services and SOA
  • Understanding of encryption, obfuscation, tokenization technologies
  • Medium to advance knowledge of Scripting tools (Python/Perl/Shell/HTML/PHP)
  • Knowledge of federal & compliance regulations e.g. SOX, PCI & CPNI
  • Familiarity with load balancers (ex – A10, F5), firewalls (ex – CheckPoint), Venafi, MDM (ex - Mobile Iron), Cloud (ex - AWS, Azure), Malware Protection (ex -FireEye), Advanced Persistent Threats (ex - Damballa), Privileged Accounts (ex – CyberArk), SIEM (ex – ArcSight), Log & Event (ex – Splunk), Intrusion IDS/IPS (ex – Symantec) , Cloud Platform (ex – PCF, Docker), Scanning (ex – Qualys), AppSec (ex - Veracode)
Job Responsibility
Job Responsibility
  • Leads security, compliance, and risk assessments on projects throughout project lifecycle
  • Improves process efficiency by creating and implementing creative and sustainable changes to existing deployment methodologies
  • Leads the identification of security needs & recommends plans/resolutions
  • Implements, tests & monitors info security improvements
  • Maintains transparency inside & outside of information security at the People management level
  • Communicate with groups such as application support, engineering ops, finance, privacy, risk management, etc
  • Leads information security policy lifecycle throughout, including intake, creation, review, approval, implementation, publishing, communication & maintenance
  • Implements security projects driven by groups both internal and external to info security
  • Mentors peers and junior team members in security technologies, enterprise solution design and facilitation and effective customer interaction
  • Experience with implementation of various threat modeling approaches pertaining to one or more of the following STRIDE, PASTA, TRIKE, ATTACK TREE, DREAD, KILL CHAIN, CAPEC, Mobile Application threat model, Cyber Threat Tree, and data flow diagram
What we offer
What we offer
  • Competitive base salary and compensation package
  • Annual stock grant
  • Employee stock purchase plan
  • 401(k)
  • Access to free, year-round money coaches
  • Medical, dental and vision insurance
  • Flexible spending account
  • Paid time off
  • Up to 12 paid holidays
  • Paid parental and family leave
  • Fulltime
Read More
Arrow Right

Federal Solutions Architect & Enablement Lead

This position will help support our partnerships within the federal sector. This...
Location
Location
United States , Oahu, Hawaii
Salary
Salary:
190000.00 - 225000.00 USD / Year
virtru.com Logo
Virtru
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 7+ years of experience in data governance, policy implementation, compliance engineering, or a related role, with a focus on federal clients
  • Active U.S. Secret security clearance required
  • Experience working in or supporting Federal Government customer environments
  • Experience integrating policy solutions, Policy as Code tools with other business systems, for example: data warehousing, BI, or analytics platforms
  • Experience translating, deploying, and managing enterprise policy, data governance, data loss prevention (DLP), data classification, and access control policy implementation
  • Experience in technical consulting for data governance and policy compliance solutions
  • Ability to decompose complicated technical concepts into manageable parts and effectively communicate those parts in a manner that is digestible for peers as well as management
  • Self-starter and system-level thinker who proactively scans for and communicates problems with technology, investigates potential causes, and proposes solutions/next steps
  • Strong communications skills
  • Expert in building relationships, listening, and managing time
Job Responsibility
Job Responsibility
  • Collaborate directly with Virtru partners/customers to translate business, legal, and data governance requirements into technical policy controls
  • Deliver interactive presentations and product demos focused on data policy implementation and compliance frameworks
  • Lead policy design and solutioning sessions with clients
  • Whiteboard Virtru’s solutions with customers data policies and produce documentation
  • Assist in oversight and project management of client policy and compliance efforts
  • Present verbal and written updates to all levels of the organization, from practitioner to C-level
  • Engage with multiple business units including software engineering, operations, product management, and business stakeholders
  • Maintain a broad and deep technical understanding of Virtru's Data Security Platform policy syntax, policy engine, and data classification frameworks
  • Understand regulatory and security compliance requirements and business data governance goals, using this context to inform policy implementation with customers
  • Partner with subject matter experts to identify and remediate gaps in policy implementation, training, or materials
What we offer
What we offer
  • A Flexible PTO policy
  • A $1,500 annual Learning & Development Stipend
  • Frequent company-sponsored team celebrations
  • Access to an Employee Assistance Program
  • Access to Headspace, a mental health app
  • A flat 3% contribution to your retirement account
  • A high degree of flexibility
  • Competitive compensation
  • Generous parental, medical, and bereavement policies
  • Uncapped commissions for Sales roles
  • Fulltime
Read More
Arrow Right
New

Security Controller

Palantir’s impact and productivity in the UK Government (UKG) sector rely on our...
Location
Location
United Kingdom , London
Salary
Salary:
Not provided
palantir.com Logo
Palantir Technologies
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Must hold or be eligible for DV and Compartmented clearance, with the ability to handle highly classified materials
  • Completion of (or willingness to complete) UKNDS Crypto Custodian and Compartmented Security Officer training
  • Strong understanding of UKG security policies and vetting processes
  • Ability to be present on-site at a given facility within a 60-minute response time, with potential on-call duties during after-hours, weekends, and holidays
Job Responsibility
Job Responsibility
  • Manage the personnel clearance programme, secure facilities, and sensitive systems
  • Ensure compliance with security policies, regulations, and processes within complex organisations
  • Deliver exceptional knowledge and customer service to Palantir personnel, enabling them to drive the business forward
  • Implement and maintain robust security processes and data protection measures, ensuring organisational compliance with government standards, supporting security clearance and vetting, promoting a strong security culture, and contributing to risk management and mitigation initiatives
  • Collaborate effectively with internal teams and external stakeholders to coordinate security activities, maintain records, deliver training, and support organisational security objectives
  • Oversee the full lifecycle and security management of cryptographic materials and digital assets, including procurement, inventory control, secure storage, distribution, disposal, policy compliance, auditing, incident response, and liaison with internal and external stakeholders
  • Deliver user support and ensure organisational readiness by maintaining personnel clearance records, providing training, conducting briefings, and offering expert guidance on the handling, movement, and security of cryptographic materials in line with UKG and organisational standards
  • Lead the management and protection of classified materials and secure facilities, overseeing secure handling, access control, physical and information security systems, SOP development, personnel vetting, incident response, and compliance with UKG standards for sensitive intelligence
  • Serve as the principal liaison with the UK Intelligence and Defence Communities, coordinating inter-agency security activities, providing expert guidance on highly classified security, and ensuring seamless integration of intelligence security requirements across the organisation
  • Fulltime
Read More
Arrow Right
New

Corporate Security

We are seeking a highly qualified Corporate Security expert for Airbus Spanish p...
Location
Location
Spain , Sevilla Area
Salary
Salary:
Not provided
airbus.com Logo
Airbus
Expiration Date
April 13, 2026
Flip Icon
Requirements
Requirements
  • Bachelor or Technical/Engineering degree
  • Knowledge of safety regulations and emergency procedures
  • Team coordination and managerial skills
  • Willingness to work at both working sites
  • English C1, fluent in speaking, reading and writing
  • Desirable knowledge or certificates in: “Senior Technician in Risks Prevention”, “Civil Liability and Emergencies”, “Safety” etc
  • Master in “Director de Seguridad”. Desirable
  • Experience in security management. Desirable
  • Strong knowledge of security technologies, including CCTV, access control, and alarm systems. Desirable
  • Experience in project management, finance, crisis management, emergency response, and incident investigation
Job Responsibility
Job Responsibility
  • Being the “Jefe de Organo de Control de la FAL de TABALADA”
  • Lead Security initiatives and ensure a secure working environment for all personnel to prevent and protect people, information, product and assets from potential third parties unsocial and antisociety risks
  • Lead implementation of security systems project
  • Be responsible for the regulations, development of procedures, control, and coordination (IOS) of the fire service activities across Airbus in San Pablo
  • By delegation of the National Security Director to manage and control all the economic, material and human resources provided by the company with the purpose of ensuring proper protection of its personnel, assets, the product and its classified and sensitive information
  • Support National Security Protection Service Tablada
  • Support Bunker san Pablo
  • Support Administrative Tasks
  • Contribution to the Creation and review of Security Plans for the site both internal and external facilities, supporting our WorldWide Business
  • Participation as Focal Point in Internal and External audits in relation to Corporate Security in the site
  • Fulltime
Read More
Arrow Right
Jobs by Category
Art and Entertainment Jobs Banking Jobs Call Center Jobs Construction Jobs Consulting Jobs Customer Service Jobs Education Jobs Energy Jobs Finance Jobs Gastronomy Jobs Health and Beauty Jobs Hospitality and Tourism Jobs Human Resources Jobs Insurance Jobs IT - Administration Jobs IT - Software Development Jobs Legal Jobs Logistics Jobs Manufacturing Jobs Marketing, Digital Marketing, SEO, SEM Jobs Media Jobs Nursing Jobs Office Administration Jobs Pharmacy Jobs Physical Work Jobs Public Relations Jobs Public Sector Jobs Purchasing Jobs Quality Control Jobs Real Estate Jobs Research and Development Jobs Sales Jobs
Job Positions Jobs by Country
United States Jobs United Kingdom Jobs India Jobs Canada Jobs Australia Jobs Germany Jobs Ireland Jobs Poland Jobs
Company
Blog About Us Contact
Follow Us
Facebook
X (Twitter)
LinkedIn
Instagram
CrawlJobs Group
ITFlashcards AllDevBlogs
© 2026 CrawlJobs Ltd. All Rights Reserved
Terms & Conditions Privacy Policy