Informacje o stanowisku

Skills and experience that will lead to success

• Broad experience of Information Security domains and operations.
• Experience of designing and operating effective reporting to senior management.
• Experience of Compliance assurance and Audit.
• Team and people management (< 5 people).
• Security certification (e.g. CISSP, CISM) an advantage.
• Strong English communication skills.
• Strong networking skills and comfortable working in a matrix virtual delivery model.
• Effective prioritisation and conflict resolution.

What the day will look like

Security Risk Management:

• Develop and provide an issue management shared service within the region, including exception and risk acceptance management.
• Define a region-wide consistent and effective approach to issue management.
• Collaborate with sub-regional leadership to ensure issues are effectively managed with required input from sub-regional / country key stakeholders, e.g. Risk Owners, Technology, Operations, Privacy, etc.
• Provide an exception management shared service within the region.
• Manage operational exception requests within region, e.g. website exceptions.
• Define a region-wide consistent and effective approach to exception management.
• Collaborate with sub-regional leadership to ensure awareness of exceptions.
• Develop and provide reporting to RSO leadership team.

Security Governance:

• Develop and manage comprehensive regional, sub-regional and country reporting to respective committees, including Issue Management, Vulnerability Management, Control Compliance, Incidents, Audit findings, Data Governance, Business Continuity / Disaster Recovery, Security KPIs and KRIs.
• Support Merger and Acquisition activities within the region, in conjunction with sub-region / country ISOs, where applicable.
• Manage region-wide audit activities, both internal and external, in conjunction with the sub-region / country ISO, where applicable.
• Track regional, sub-regional and country remediation.
• Provide reporting to regional governance and audit to monitor audit remediation through its lifecycle.

Security Compliance:

• Manage the security aspects of region-wide compliance, including DORA, EIOPA, etc.
• Represent security and, in conjunction with regional leadership, support management of regulatory supervision within the region.
• Develop region-wide compliance management to support control assessments.

Client Support/Escalation Management:

• Represent security on Client calls or issues, as required.
• Provide first line security advice, guidance and Policy and Standard support to Client teams.
• Support the engagement of GSS services.

How this opportunity is different

The Regional Security Officer service provides a Regional/Solution Line/Business Level security connection to the core GSS Security Services to ensure they are appropriately leveraged to manage security risks. The EMEA RSO functional office and Centre of Excellence will support the RSOs across the region, sub-region and countries.

Kraków - Oferty pracy w okolicznych lokalizacjach