IT Security Officer

at Nivoda
🇪🇸 Spain - Remote
🔒 Cybersecurity🔵 Mid-level

Job description

Location - Barcelona, Remote

Manage the risk. Fix the gaps. Build what works.

At Nivoda, we’re not just managing risk — we’re building resilient foundations that power a global, fast-scaling business. As an IT Security Officer, you’ll roll up your sleeves to identify control gaps, design solutions, and deliver them end to end. No hand-offs, no theoretical frameworks — this is a hands-on, execution-first role for someone who wants to build real impact.

You’ll work directly with teams across Tech, Product, Ops, Risk and Senior Leadership to strengthen how we operate — from process design to system safeguards, vendor risk to business continuity. You’ll help us go faster, more securely, and with total confidence in the foundations we’re building.

About us:

Nivoda’s B2B diamond and gemstones marketplace allows jewellery retailers to save time and money whilst gaining access to a global diamond supply at the best prices, with zero inventory risk.

With a team of over 300 dedicated employees around the world and a wealth of experience in the industry, Nivoda has developed an award-winning solution that enables jewellery businesses of any size, in any location, to buy and sell diamonds in the most profitable, efficient and hassle-free manner.

Over the course of the last six years, Nivoda has evolved into a global platform recognised for its innovation, customer service and ability to deliver a seamless, reliable and efficient experience.

Since its launch in 2017, Nivoda has remained true to its founding mission: build the trusted global marketplace for the jewellery industry by delivering modern tools and quantitative ROI.

What you’ll do:

  • Drive End-to-End Security Solutions: Own and execute IT security and business continuity risk initiatives from identification to implementation. Don’t just flag issues — fix them by collaborating across teams and seeing solutions through to resolution.

  • IT Control Design & Testing: Conduct deep-dive IT control assessments and test the design and operating effectiveness of IT and Security controls across the business. Translate findings into smart, practical improvements that teams can actually adopt.

  • Strengthen System Classification & Security: Run CIA assessments to classify systems and test appropriate security controls are in place. Work with system owners, Engineering, Data and Product to ensure controls are designed and implemented, not patched later.

  • Security of PII data and GDPR Compliance: Work closely with engineering, system owners and infrastructure teams to ensure security controls around PII data are correctly implemented within IT systems—through privacy design reviews, technical validations, and periodic audits of access, encryption, logging, and data handling configurations.

  • Build and Own Business Continuity Plans: Improve, test and maintain Business Continuity and Disaster Recovery Plans (BCP/DRP) across critical functions. Run regular scenario-based continuity tests to validate readiness, backup effectiveness and recovery times. Ensure teams know what to do — and that it actually works when tested.

  • Improve Security Monitoring and Incident Readiness: Support implementation and build reporting of security monitoring tools (e.g., SIEM, endpoint protection, access logs). Work with engineering to define indicators of compromise (IoCs) and automate alerting and follow up. Participate in incident response and continuously improve playbooks.

  • Control Security Vendor Risk with Confidence: Evaluate third-party providers, own and perform IT Security risk assessments for contract owners, and make sure we have real continuity, not just paper guarantees.

What you’ll need:

  • Minimum 3 years experience in IT Security, business continuity management, and/or IT Risk Management.

  • Experience in a start or scale up is preferred.

  • You can turn and explain a complex situation into something simple, strong, and scalable

  • Work fast and get things done — without compromising on detail

  • Speak the language of both tech and operations

  • Thrive in a high-growth, high-trust environment where execution matters

  • Certifications such as CISM, CISA, ISO27001, CBCP, or CDRE are desirable.

What we offer:

  • Opportunity to join us at a dynamic growth phase, where your contributions can have a significant impact on shaping the company’s future success

  • Exposure to senior leadership and the opportunity to contribute to strategic decision-making.

  • Remote working environment

  • Flexible working

  • Unlimited holiday

  • Fast-paced and global working environment

Share this job:
Please let Nivoda know you found this job on Remote First Jobs 🙏

Similar Remote Jobs

Nivoda logo

Nivoda

  • 201-500 employees
  • Founded in 2017
  • 27 remote jobs

Latest Jobs at Nivoda

Benefits of using Remote First Jobs

Discover Hidden Jobs

Unique jobs you won't find on other job boards.

Advanced Filters

Filter by category, benefits, seniority, and more.

Priority Job Alerts

Get timely alerts for new job openings every day.

Manage Your Job Hunt

Save jobs you like and keep a simple list of your applications.

Search remote, work from home, 100% online jobs

We help you connect with top remote-first companies.

Search jobs

Hiring remote talent? Post a job

Frequently Asked Questions

What makes Remote First Jobs different from other job boards?

Unlike other job boards that only show jobs from companies that pay to post, we actively scan over 20,000 companies to find remote positions. This means you get access to thousands more jobs, including ones from companies that don't typically post on traditional job boards. Our platform is dedicated to fully remote positions, focusing on companies that have adopted remote work as their standard practice.

How often are new jobs added?

New jobs are constantly being added as our system checks company websites every day. We process thousands of jobs daily to ensure you have access to the most up-to-date remote job listings. Our algorithms scan over 20,000 different sources daily, adding jobs to the board the moment they appear.

Can I trust the job listings on Remote First Jobs?

Yes! We verify all job listings and companies to ensure they're legitimate. Our system automatically filters out spam, junk, and fake jobs to ensure you only see real remote opportunities.

Can I suggest companies to be added to your search?

Yes! We're always looking to expand our listings and appreciate suggestions from our community. If you know of companies offering remote positions that should be included in our search, please let us know. We actively work to increase our coverage of remote job opportunities.

How do I apply for jobs?

When you find a job you're interested in, simply click the 'Apply Now' button on the job listing. This will take you directly to the company's application page. We kindly ask you to mention that you found the position through Remote First Jobs when applying, as it helps us grow and improve our service 🙏

Apply