Informacje o stanowisku

technologies-expected :

• Microsoft PowerApps
• Power Automate
• Microsoft 365
• Jira

• As an Information Security Specialist at Zurich, you will help protect our data, systems, and customers by implementing robust security measures and fostering a culture of security awareness. You’ll work collaboratively across the business to reduce risks and ensure compliance, supporting Zurich’s commitment to creating a brighter future together.

• Security Management & Incidents response:
• Deploy, monitor, and maintain security solutions as per Zurich group guidelines.
• Assists local or regional projects to identify and align security requirements, design security controls and test their effectiveness.
• Lead or assist in security incident investigations and conduct post-incident reviews.
• Deliver security awareness trainings / newsletters.
• Document security processes and procedures
• Become a member of global security communities
• Vulnerability Management:
• Identifying, assessing, prioritizing, and remediating security vulnerabilities in applications and operating systems.
• Risk Assessment & Mitigation:
• Evaluate information security risks and recommend effective mitigation strategies.
• Support business in understanding and managing security risks.
• Work with colleagues across the functions to maintain Disaster Recovery and Business Continuity plans.
• Regular review of Business Impact Analysis for the Krakow and Bratislava centers.
• Implementation and monitoring of controls framework in the field.
• Regulatory Compliance:
• Ensure ongoing compliance with relevant laws & regulations (e.g., GDPR), and Zurich’s internal policies. Support audits and provide documentation as required.
• Continuous Improvement:
• Stay up to date with emerging threats, technologies, and best practices. Adapt security practices to evolve business and regulatory requirements.

• Bachelor’s degree (or equivalent) in IT or other related areas.
• 2 or more years of experience in related fields.
• Good knowledge of cybersecurity frameworks, tools, and best practices.
• Experience conducting risk assessments, vulnerability scans, and incident responses.
• Hands-on experience with Microsoft PowerApps, Power Automate, and related Microsoft 365 tools.
• Understanding relevant legal and regulatory requirements.
• Excellent communication skills—able to explain technical topics to non-technical audiences.
• Knowledge of Service Now and Jira is a plus.

• Real life opportunities to develop and grow with us and contribute to the world around us.
• Competitive salaries, language allowance and an employee benefits package that includes among others medical insurance, life insurance and sport-card.
• Annual bonus depending on company annual results and individual performance.
• Wide range of learning programs and personal development opportunities including also possibility to apply for up to 80% of educational trainings reimbursement.
• Referral awards.
• Online fitness trainings.
• Hybrid work.
• Nice and friendly atmosphere.

• sharing the costs of sports activities
• private medical care
• sharing the costs of professional training & courses
• life insurance
• remote work opportunities
• flexible working time
• integration events
• corporate sports team
• no dress code
• coffee / tea
• leisure zone
• employee referral program
• charity initiatives
• language allowance
• annual bonus
• up to 80% of trainings reimbursement (f.ex. ACCA)
• nice and friendly atmosphere
• competitive salary
• online fitness trainings

Kraków - Oferty pracy w okolicznych lokalizacjach