Wrocław, Wrocław, Lower Silesian Voivodeship, Polska
Smith&Nephew Sp. z o.o.
4. 10. 2025
Informacje o stanowisku
responsibilities :
Develop and maintain enterprise security standards, policies, and tooling aligned with ISO, SOX, HIPAA, and global data protection regulations.
Collaborate with cross-functional teams and projects to integrate secure architecture principles into solution design, identify risks, and drive remediation strategies.
Lead security initiatives such as RFP creation, vendor evaluations (POVs), penetration testing (infra & app), and the implementation of secure design practices.
Design and implement technical security solutions based on industry frameworks like CIS, NIST, and Cloud Security Alliance (CSA), tailored to our cloud environment.
Support the development and transition of projects into production, ensuring robust security monitoring and controls are in place.
Produce comprehensive security assessment reports and provide expert guidance to development and operations teams on mitigating identified risks.
Assist in the selection, configuration, and troubleshooting of security infrastructure tools, and help automate repetitive security tasks.
requirements-expected :
Proven experience in enterprise security, with strong knowledge of operating systems (Windows, Linux), networks (including Palo Alto firewalls), cloud platforms (Azure/AWS), and security tooling across IT and OT environments.
Solid understanding of core security technologies such as SIEM, WAF, IDS/IPS, and a strong grasp of secure architecture principles including “Secure by Design” and risk management practices.
Hands-on experience implementing and administering security controls for on-premises and cloud infrastructure, including identity access, network security, and endpoint protection.
Strong scripting and automation skills (e.g., PowerShell, Python, APIs), and the ability to extract, parse, and manipulate data across formats (CSV, Syslog, JSON, etc.) to support security operations.
Relevant certifications such as CISSP, CCSP, SANS, TOGAF, or cloud-specific security credentials (Azure/AWS), and a deep understanding of standards including ISO27001, SOX, HIPAA, and GDPR.
Strong collaboration and communication skills, with experience working across multi-disciplinary teams, vendor environments, and project lifecycles to deliver secure, scalable solutions.
Analytical mindset with high attention to detail, a flexible approach to technical challenges, and the ability to assess risks, drive innovation, and support ongoing security enhancements.
offered :
Inclusion & Belonging: Committed to Welcoming, Celebrating and Thriving on Inclusion and Belonging, Learn more about our Employee Inclusion Groups on our website
Your Future: Generous annual bonus, life insurance, Save As You Earn share options.
Work/Life Balance: Flexible Vacation and Time Off, Paid Holidays and Paid Volunteering Hours, so we can give back to our communities!
Your Wellbeing: Private Health and Dental plans, multisport card/my benefit platform and much more.
Flexibility: Hybrid Working Model (For most professional roles).
Training: Hands-On, Team-Customised, Mentorship, subsidies for language classes, certifications and postgraduate studies
benefits :
sharing the costs of sports activities
private medical care
sharing the costs of foreign language classes
sharing the costs of professional training & courses