SECURITY GOVERNANCE CONTROLS AND REPORTING

Are you able coordinate internal and external audits, implement security controls? 

What will be your key responsibilities:

• Coordinate internal and external audits by developing a comprehensive audit plan, supporting all teams to gather necessary documentation, and liaising with departments and management to ensure timely completion of audits.

• Implement security controls and measures framework across the organization to protect information, assets, and employees.

• Monitor and analyze the organization’s security posture on a continuous basis to identify potential risks or vulnerabilities and recommend appropriate corrective action.

• Define and report Key Performance Indicator (KPI) reports and updates on the security status of the organization to management, highlighting any areas of concern or potential improvement.

• Support the CISO Organization in developing and maintaining security policies, procedures, and guidelines in line with industry standards, regulatory requirements, and best practices.

• Support CISO Organization in measuring the performances of specific processes and activities and enabling evaluation of information security posture maturity.

• Conduct security assessments of new projects, systems, or technologies, and advise on appropriate security requirements, controls, and best practices.

• Stay informed of emerging security trends, threats, and relevant best practices to continuously enhance the organization’s security measures.


What experience should you have:

• Bachelor’s degree Security, Information Technology, in a related field or equivalent proven experience

• Minimum of 3 years of experience in a security governance, risk an compliance role

• Strong knowledge of security and risk management principles, best practices, and industry standards, such as ISO 27001, NIST.

• Excellent communication, interpersonal, and negotiation skills, with the ability to collaborate effectively with various stakeholders.

• Strong analytical and problem-solving skills, with attention to detail and ability to prioritize and manage multiple tasks concurrently.

• Ability to effectively present information and respond to inquiries from management, employees, and external stakeholders.

• self-motivated and proactive, with a strong commitment to continuous learning and improvement in the field of security.

Plus or Nice to have:

• Relevant professional certifications, such as Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), or Certified Information Systems Auditor (CISA), are considered a plus.

• Experience with regulatory and industry-specific security requirements. In particular, knowledge of Trusted Information Security Assessment Exchange (TISAX) and VDA Information Security Assessment (ISA)

• Experience with other reporting or visualization tools, such as Excel, PowerBI, Tableau, QlickView


Mám zájem o tuto pozici

Poslat nabídku na e-mail

Další pozice v oboru Informační technologie, region Trnava - remote work possible

Lead Project Engineer

  • IT match
  • Remote
  • 300 EUR/MD

We are in search of a seasoned and energetic Lead Project Engineer to become an integral part of our team. This position encompasses the duties of a Tech Lead, Team Lead, and Project Owner,…

Lead Project Engineer

Hľadáme IT analytika (API,SQL), 13plat a množstvo benefitov

  • Manuvia Expert Recruitment SK
  • Bratislava
  • 2 500 - 3 500 EUR/mes

Pre jednu z najvýznamnejších a najstabilnejších slovenských bank hľadáme Senior IT Analytika digitálneho bankonvíctva.

Hľadáme IT analytika (API,SQL), 13plat a množstvo benefitov

Product Owner

  • Eleveo
  • Nemcovej 30, Košice
  • By agreement

ABOUT TEAMSOmega & Phoenix teams are oriented on the foundation, platform, of our Eleveo suite. Team's main focus is Integrations, dataflow management and Identity & Access management. These mostly…

Product Owner