Informacje o stanowisku

about-project :

• We are seeking a highly skilled Senior Cybersecurity Specialist to join our team. This role involves a strategic focus on enhancing our organizations IT risk management capabilities, particularly in the realm of cybersecurity. The relevant candidate will play a crucial role in assessing risks, developing mitigation strategies, and ensuring compliance with security standards across our global operations.

• Supplier Security Governance:
• Develop and implement supplier security governance frameworks and policies.
• Conduct security assessments and audits of suppliers to ensure compliance with organizational standards and industry best practices.
• Collaborate with suppliers to address identified security gaps and ensure the implementation of effective security controls.
• Maintain an up-to-date inventory of supplier security postures and risk profiles.
• Monitor supplier compliance with contractual security requirements and regulatory standards.
• Customer Security Assurance:
• Serve as the primary point of contact for customer security inquiries and assurance requests.
• Develop and maintain customer security assurance documentation, including security whitepapers, questionnaires, and reports.
• Conduct security assessments to validate that customer security requirements are met.
• Collaborate with internal teams to address customer security concerns and provide timely responses.
• Ensure continuous improvement of customer security assurance processes and practices.
• Risk Management:
• Identify, evaluate and manage security risks associated with suppliers and customer engagements.
• Develop risk mitigation strategies and work with stakeholders to implement necessary controls.
• Maintain risk registers and ensure continuous monitoring and reporting of security risks.
• Training and Awareness:
• Conduct training sessions and awareness programs for suppliers and internal teams on security governance and customer security assurance.
• Stay updated on the latest cybersecurity trends, threats, and regulations.
• Promote a culture of security awareness and compliance across the organization and among suppliers.

• Bachelors degree in Computer Science, Information Technology, Cybersecurity, or a related field.
• Professional certifications such as CISSP, CISM, CISA, ISO 27001 Lead Auditor, or similar.
• 8-10 years of experience in cybersecurity GRC, with a clear focus on ISO 27001, ISO 31000, or NIS2.
• In-depth knowledge of cybersecurity frameworks, standards, and best practices.
• Experience in the healthcare or medical device industry is beneficial.
• Effective communication and collaboration skills, with the ability to effectively engage with stakeholders at all levels.
• Strong analytical skills and attention to detail, with the ability to identify and assess cybersecurity risks effectively.
• Demonstrated ability to negotiate and implement security terms in supplier contracts.
• Experience in administering and customizing GRC tools to align with organizational requirements.
• A forward-thinking and goal-focused attitude, equipped to propel initiatives in a constantly evolving landscape.

• Growth: we have a training budget for you, access to the LinkedIn Learning platform, and the possibility to work with modern technologies within a med-tech company,
• Stability: work in a well-established company with over 100 years of experience in producing hearing aids with employment based on the contract of employment,
• Work-life balance: possibility to work fully remotely during flexible working hours,
• Benefits: private medical care, life insurance, sports card, discounts on our products, integration events, holiday bonus, and much more,
• Diversity: work in a truly global environment with the possibility for cross-collaboration.

• sharing the costs of sports activities
• private medical care
• sharing the costs of foreign language classes
• sharing the costs of professional training & courses
• life insurance
• remote work opportunities
• flexible working time
• fruits
• corporate products and services at discounted prices
• integration events
• no dress code
• parking space for employees
• extra social benefits
• holiday funds
• employee referral program
• charity initiatives
• family picnics
• Benefit platform

Poznań - Oferty pracy w okolicznych lokalizacjach