ISMS-Senior Specialist

Arriello is enhancing the current excellent team by bringing onboard someone to guide the programme for information security, privacy, and data protection compliance.

Arriello is working towards meeting upcoming cyber security regulations and as part of meeting these requirements, Arriello is in the process of implementing and seeking accreditation under ISO27001:2013.

We are now appointing a Senior Specialist to oversee this activity, supporting our teams with this process, and in the future supporting our client teams with questions from their clients and ensuring that we maintain an update date, compliant process for our employees, vendors, and clients.

What will be your key responsibilities:


The ISMS (Information Security Management System) Senior Specialist role involves managing information security within Arriello and would particularly suit a candidate with project management expertise. Reporting to the head of IT, the candidate will be working with internal teams, our vendors, and an external specialist security advisory business to implement and then maintain compliance with the requirements of the ISO 27001 Information Security Standard.


  • Co-ordination of ISO 27001 efforts across the organisation to attain certification to ISO 27001 in consultation with outsourced advisory services.
  • Guide internal staff on the application of corporate standards in relation to ISO 27001 and provide training guides for our vendors to ensure they meet our requirements.
  • Take an active role implementing the requirements of ISO 27001 across the organisation.
  • Facilitate collaborative workshops to support ISO 27001 project advancement.
  • Assist with completing 3rd party security questionnaires where required.
  • On-going monitoring and enhancement of the information security management system (ISMS) to conform with the requirements of the ISO 27001 Information Security Standard.
  • Work with the Arriello business functions to obtain the necessary participation for Certification and Internal Audits.
  • Ensuring that ongoing ISMS related security tasks are carried out such as Security Awareness Training for staff, Test and Assurance of systems and Policy Management (including reviews, adherence, and distribution).
  • Implementation of corrective actions and remediation work arising from internal and external security audits
  • Work closely with our internal Quality Team, Legal Counsel and others where needed to identify priorities and changes where needed.


  • Strong communication skills to be able to work with all levels of the business.
  • Deliver solutions and innovations in collaboration with internal stakeholders,
  • Effectively manage and build working relationships with all stakeholders, based on transparency, trust and clear communication,
  • Excellent cross functional teamwork with Operations colleagues to ensure full compliance to meet the plan that you help develop.

What experience should you have:

  •  3-5 years IT/cybersecurity industry experience.
  •  Good understanding of the requirements of ISO 27001 information security standard.
  • Proven ISO 27001 implementation experience desirable.
  • Be familiar with both agile and waterfall project management methodologies.
  • Good understanding of security principles and technologies.
  • Good understanding of networking principles.
  • Understanding of the telecommunications industry a bonus.
  • Excellent written and verbal communications skills.
  • some knowledge of the Pharma Compliance industry advantageous

What do you get in return:

  • Friendly work environment
  •  Multinational team with 30 nationalities
  •  Flexible working hours, working from home
  •  Remote work is possible
  •  Cafeteria benefit system
  •  Dog-Friendly office
Mám zájem o tuto pozici

Poslat nabídku na e-mail

Další pozice v oboru Informační technologie, region Prague

Data Scientist/Machine Learning Engineer

  • Košík
  • Praha hl.m.
  • Dohodou

Koší není jen online supermarket, ale taky velká parta milovníků technologií a inovací. Rosteme nejen v rámci Čech, ale děláme radost i zákazníkům v Bulharsku a zanedlouho expandujeme do dalších…

Data Scientist/Machine Learning Engineer

Senior Automation Engineer

  • Fortuna
  • Prague
  • By agreement

Fortuna has become an established brand among customers within just a few years. We became a proud international Family of companies carrying Fortuna Entertainment Group from the first betting shop.…

Senior Automation Engineer

Sales Manager

  • WMC Group
  • Prague
  • By agreement

Our Omega division is looking for a skilled Sales Manager to join in on the adventure.

Sales Manager