Information Security Analyst

Role Summary:

We are seeking a motivated Security Analyst to support the implementation and continuous improvement of our Information Security Management System (ISMS) based on ISO/IEC 27001:2022. The successful candidate will work closely with senior team members and stakeholders across multiple countries within the ELCA Group to maintain documentation, assist in internal and external audits, and support the day-to-day operations of the cybersecurity compliance program.

Key Responsibilities:

• Support the coordination of ISO 27001 internal controls with internal teams and stakeholders.
• Help monitor the effectiveness of controls by collecting and organizing evidence.
• Follow up with control owners under the guidance of the Senior Analyst.
• Participate in managing internal and external audit findings and track action plans to closure.
• Help prepare and organize documentation for audit planning and evidence reviews.
• Support the execution of internal audits in alignment with ISO/IEC 27001:2022 (under supervision).
• Assist in maintaining the Information Security Management System (ISMS) and Integrated Management System (IMS) documentation.
• Support ad-hoc cybersecurity, privacy, or compliance-related tasks as needed.

Profile Requirements:

• Bachelor’s degree in Information Systems, Computer Science, or related field.
• 2 years of experience minimum in information security.
• Some exposure to ISO/IEC 27001, internal controls, or IT audits is desirable.
• Strong attention to detail and ability to follow structured processes.
• Effective communication and interpersonal skills.
• Fluent in English; French proficiency is an asset.
• Self-motivated and eager to learn in a collaborative international environment.

Preferred but Not Mandatory:

• Basic understanding of cybersecurity concepts or control frameworks (e.g., NIST, ISO).
• Familiarity with GDPR or data privacy requirements.
• Certification or training in ISO 27001 (e.g., CISA (ongoing accepted), PECB ISO 27001:2022 Lead Implementer/Lead Auditor) is a big plus.

What We Offer:

• Mentorship and learning from senior cybersecurity professionals.
• Exposure to international security frameworks and real-world audit processes.
• Career growth opportunities in cybersecurity, compliance, and GRC.

We are ELCA, one of the largest Swiss IT tribe with over 2,200 experts. We are multicultural with offices in Switzerland, Spain, France, Vietnam and Mauritius. Since 1968, our team of engineers, business analysts, software architects, designers and consultants provide tailor-made and standardized solutions to support the digital transformation of major public administrations and private companies in Switzerland. Our activity spans across multiples fields of leading-edge technologies such as AI, Machine & Deep learning, BI/BD, RPA, Blockchain, IoT and CyberSecurity.