Information Security Consultant

Description

Summary: Join Sulzer's global IT Security Team as an Information Security Consultant to fortify digital defenses and contribute to a secure, sustainable society. Highlights: 1. Play a pivotal role in fortifying Sulzer's digital fortress 2. Collaborate on cutting-edge Information Security Management System design 3. Integrate governance, risk assessment, and incident response into operations Sulzer is a leading engineering company with a proud heritage of innovation. Join our global team to grow your expertise and develop innovative solutions that enable a prosperous and more sustainable society. **About the role** ================== At Sulzer, you are in charge of your career and continued development. Take the opportunity to broaden your skills by seeking new roles that reflect your experience. Create your own impact by building solutions that help make lives safer, smarter and more sustainable. Are you a cybersecurity enthusiast with a passion for making a meaningful impact on a global scale? Join our global IT Security Team (CISO Office) as an Information Security Consultant and play a pivotal role in fortifying our digital fortress. At Sulzer, we believe in fostering innovation and excellence, and we are on the lookout for a talented professional to contribute to our dynamic cybersecurity landscape. **Key Responsibilities** * Collaborate on the design, implementation, and maintenance of our cutting\-edge Information Security Management System (ISMS). * Contribute to the development and management of security policies, standards, guidelines, and procedures. Work closely with our C ISO on policy exceptions, security tickets, and changes. * Ensure compliance with security directives based on the NIST Cybersecurity Framework through continuous monitoring of our expansive IT and OT landscape. * Take charge of the information security risk assessment and control framework, aligning it with o perational T echnology (OT) standards. * Integrates governance, risk assessment, control monitoring, and incident response into daily plant operations, enabling consistent decisions, reducing risks, and ensuring safe and resilient industrial activities. * Support cybersecurity audits and assessments from different customers or legal entities. * Play a key role in disaster recovery reviews, ensuring our systems are resilient and can withstand unforeseen challenges. * Engage in reviews of vendors, suppliers, as well as contracts, data flow diagrams and questionnaires to guarantee alignment with security standards. * Conduct Gap analysis (framework vs directives, regulations) to prioritize security initiatives. * Collaborate with executives to prioritize regional or global security initiatives , cybersecurity awareness and training plan and applying risk management methodologies. Support the implementation and operation of security products and processes to ensure compliance with global regulations, such as the Cyber Resilience Act (CRA). **Requirements:** * A Bachelor’s degree in Computer Science or relevant field experience. * Minimum of 5 years of working experience, with a proven track record of effective collaboration between IT /OT and Business stakeholders. * Strong knowledge of Information Security, Risk Management, NIST Cybersecurity Framework and Controls , Directives and other standards (ISO 27001, ISO 22301, IEC 62443\) * Proficiency in Windows\-based operating systems and networks, with the ability to analyze security issues. * Ability to integrate governance, risk, controls, and incident response into daily OT operations to improve s ecurity and reduce risks. * Excellent communication skills in English. * CISSP, CEH, or equivalent certifications are highly desired. **What we offer you** ===================== * A permanent contract. * A competitive salary as well as participation in the variable remuneration system based on personal and financial objectives. * Restaurant tickets * Be part of an experienced, international team. * A good vibe working environment. * Enjoy great office facilities and a perfect location in Madrid Nuevos Ministerios, making your work experience both comfortable and convenient. * Other fringe benefits No visa or work permit support can be provided for this role. If you're ready to contribute to the future of cybersecurity in a collaborative and forward\-thinking environment, apply now and be a part of our exciting journey towards a secure digital future! Sulzer is an equal opportunity employer. We believe in the strength of a diverse workforce and are committed to offering an inclusive work environment. We are proud to be recognized as a Top Employer 2026 in Brazil, Canada, China, Finland, Germany, Ireland, Mexico, Switzerland, South Africa, the UK and the USA.