Information Security & Compliance Officer

Stanowisko: Information Security & Compliance Officer

Miejsce pracy: Warszawa

Data dodania: 07.04.2021

DCG is a modern technology company, gathering in its ranks IT related professionals. Due to the continuous development and the large number of recruitment projects that we carry out for our Partners, we are looking for a person for the position:

Information Security & Compliance Officer

Responsibilities:

  • Monitor compliance with the security standard and policies and, if needed, set up an improvement plan
  • Risk assessment and implementation of adequate risk management and continuity assurance practices
  • Interaction with the Customer Security Officer - Day to day support: technical advices, workshops, participation to Change Advisory Boards etc.
  • Management of relationships with security partners (internal to the Client and Customer)
  • Monitoring of security services performance
  • Provision of security compliance reporting
  • Ensuring that all the Blueprints, detailed design solutions and implementation plans are compliant with Customer Policies
  • Communicating to the account team the current policies and their evolution
  • Collection and analysis of the information ( CERT, … ) on potential IT Risks and threats which can impact Customer Business activities
  • Recommendations, alerts and leading of crisis plans
  • Collection and analysis of the information on potential risks and threats, which can impact the Services delivered by the Client
  • Act as Client's Business Services representative with respect to inquiries from the client, regarding the enterprise's security strategy
  • Develop specific procedures for effective security for dedicated environments
  • Develop and monitor formal procedures for reporting information security incidents and investigations within the Client's account team
  • Arrange and provide information security education and training to Client's account team dealing with the project
  • Contribute to the security aspects of the design of systems
  • Assist to regular security or risk management meetings with the different security stakeholders within the client organization
  • Work in close relationship with the audit department of the client to ease the auditing of the specific services ordered
  • Support the client in its compliances exercises by providing information, evidences or supporting the clients during their own audits

Requirements:

  • Knowledge of information security management
  • Audit skills: being audited and running audits
  • Being able to run compliance exercise
  • Knowledge of applicable laws (especially the privacy laws)
  • Risk: analysis, management and mitigations
  • Good communication skills with technical and CxO profiles
  • Technical knowledge: Firewall, network, OS Security - typically a focus on the technology used for the client is needed
  • Knowledge of security and audit standards: ISAE 3402, ISO 27001, SOC 2 (As standards are evolving this must be adapted to the current requested standards)
  • Understanding and evaluation of security threats
  • Vulnerability management
  • Business continuity and Disaster recovery
  • Fluent in English
  • Strong and proven consulting skills
  • Minimum 5 years related work experience in customer facing organizations within the telecom or IT industry
  • Required: CISM, CRISC
  • Project management (basic skill)
  • Advised: CISA, CISSP
  • Certification in Data privacy is a plus

Offer:

  • Constant support of dedicated consultant
  • Team-building events organised by DCG
  • Competitive salary adequate to experience and skills

Przed wyslaniem CV/dokumentów aplikacyjnych, uprzejmie prosimy kandydatów o zapoznanie się z klauzulą informacyjną.

Po zapoznaniu się z klauzulą informacyjną podaną przez Administratora Danych dobrowolnie wyrażam zgodę na przetwarzanie przez Ogłoszeniodawcę moich danych osobowych, zawartych w mojej ofercie pracy, dla potrzeb procesu tej rekrutacji oraz dla realizacji przyszłych projektów rekrutacyjnych.

Agencja doradztwa personalnego (nr licencji 4642)

Dane spółki: Diverse CG Sp. z o.o. Sp.k., ul. Towarowa 28, 00-839 Warszawa                                                     

REGON: 141316780

NIP: 5222877930

KRS: 0000733458

Obserwuj nas: