This position will play a crucial role in safeguarding information systems by proposing, managing/overseeing, and monitoring security requirements. This role involves designing security solutions, responding to incidents, and ensuring compliance as well as the advancement of policies and procedures.
responsibilities :
Drive forward the maturity on the ISMS in collaboration with the Group CISO
Supporting and ensuring successful ISO27k certification cycles
Management and support of controls, processes and documentation
Penetration Testing
Definition of scenarios and their coordination. Evaluation of the results combined with the derivation of appropriate measure
Threat and Vulnerability Management
Conduct regular vulnerability assessments and provide recommendations for remediation
Follow up on identified vulnerabilities to ensure timely resolution as well as providing practical assistance for remediation
Conduct Security Audits & Assessments
Find and prioritize vulnerabilities and suboptimal configuration that pose a risk to the organization
Ensure systems are configured according to security best practises and in alignment to Aebi Schmidt Group policies and procedures
Identitfy new Risks and develop mitigation strategies
Incident Management & Security Monitoring
Work closely with the CDC for incident response
Respond to security breaches or incidents with security relevance
Analysis of security-relevant events, observation of the current threat situation and assessment of possible effects on IT systems
Improve Maturity of platform and processes around incident response
Security in Projects
Work closely and support IT and other departments to integrate security measures into all aspects of technology
Security Awareness
Ensure Security Awareness and Phishing Trainings are delivered to the organization
requirements-expected :
Degree in the field of IT or Cybersecurity
At least 2+ years experience in a field related to cybersecurity
Structured, thorough, precise, and goal-oriented personality with strong analytical skills and a passion for information security
Motivated person who can work well individually as well as in a team and has the drive to move things forward and raise the organizations cybersecurity maturity
Knowledge of IT Security Frameworks (e.g. CIS, NIST, BSI, ISO 27000) also certifications such as a CISSP, CISM, or respective SANS GIAC certifications are a plus
Good English Skills
offered :
Opportunity to take an active part in shaping Corporate Service Center with a unique setup
Work with people who are passionate of delivering outcomes and a culture of simplification and ownership
Short decision-making paths
Private Healthcare
Top location in Katowice
Flexible working time
Friendly and team-oriented working atmosphere, as well as open and direct communication
Stability of employment
benefits :
private medical care
sharing the costs of professional training & courses
