Informacje o stanowisku

Social network you want to login/join with:

Client:

WSAudiology

Location:

Job Category:

Other

EU work permit required:

Yes

Job Reference:

619c9f8471e0

Job Views:

20

Posted:

23.01.2025

Expiry Date:

09.03.2025

Job Description:

We are seeking a highly skilled Senior Cybersecurity Specialist to join our team. This role involves a strategic focus on enhancing our organizations IT risk management capabilities, particularly in the realm of GRC and Control Audits. The relevant candidate will play a crucial role in assessing control compliance, developing mitigation strategies, and ensuring GRC adoption across our global operations.

What you will do

Audit and Compliance:

• Conduct detailed cybersecurity audits to ensure compliance with ISO 27001, ISO 31000, and NIS2 standards.
• Develop and implement audit plans, procedures, and checklists.
• Identify and document control deficiencies and provide recommendations for remediation.
• Monitor and report on compliance status, ensuring timely resolution of identified issues.

Risk Assessment:

• Perform risk assessments to identify, analyze, and evaluate cybersecurity risks.
• Develop risk management frameworks and strategies in alignment with ISO 31000.
• Collaborate with stakeholders to prioritize and address identified risks.
• Maintain risk registers and ensure continuous monitoring and reporting.

Control Compliance:

• Ensure the implementation and maintenance of effective security controls in line with ISO 27001 and NIS2 requirements.
• Develop and update security policies, procedures, and guidelines.
• Conduct control testing and validation to ensure effectiveness.
• Provide guidance and support to various teams on compliance requirements and best practices.

Training and Awareness:

• Conduct training sessions and awareness programs on cybersecurity policies, standards, and best practices.
• Keep abreast of the latest cybersecurity trends, threats, and regulations.
• Promote a culture of security awareness and compliance across the organization.

What you bring

Experience:

• Bachelors degree in Computer Science, Information Technology, Cybersecurity, or a related field.
• Professional certifications such as CISSP, CISM, CISA, ISO 27001 Lead Auditor, or similar.
• 8-10 years of experience in cybersecurity GRC, with a strong focus on ISO 27001, ISO 31000, and/or NIS2.
• In-depth knowledge of cybersecurity frameworks, standards, and best practices.
• Experience in the healthcare or medical device industry is a plus.
• Excellent communication and interpersonal skills, with the ability to work effectively with diverse teams.
• Strong analytical, problem-solving, and decision-making skills.
• Demonstrated ability to negotiate and implement security terms in supplier contracts.
• Experience in administering and customizing GRC tools to align with organizational requirements.
• A forward-thinking and goal-focused attitude, equipped to propel initiatives in a constantly evolving landscape.

We can offer:

• Growth: We have a training budget for you, access to the LinkedIn Learning platform, and the possibility to work with modern technologies within a med-tech company.
• Stability: Work in a well-established company with over 100 years of experience in producing hearing aids with employment based on the contract of employment.
• Work-life balance: Possibility to work fully remotely during flexible working hours.
• Benefits: Private medical care, life insurance, sports card, discounts on our products, integration events, holiday bonus, and much more.
• Diversity: Work in a truly global environment with the possibility for cross-collaboration.

Poznań - Oferty pracy w okolicznych lokalizacjach