I&T GRC Information Security Specialist

Job description

Location – Krakow Why is this job for you: The I&T GRC function supports the CISO and IT leadership across a range of information security, cybersecurity and technology risk controls, in support of IT, business, regulatory and customer requirements. Reporting to the Head of I&T GRC or direct report thereof, the role provides internal information security control consultancy and assessment. Reporting to the Head of I&T GRC or direct report thereof, the role provides internal security controls consultancy and assessment, supports business and IT stakeholder third party risk management arrangements and operates greed I&T GRC operated processes or controls. You will: Create information and cybersecurity documentation (standards, processes, or guidance) in support of certification and compliance goals in the context of external certification and regulatory compliance requirements (e.g., ISO27001 and EU NIS2 implementation) Own or support assigned agreed information security controls operated by I&T GRC e.g., risk process management, aspects of training and awareness in collaboration with wider team, support for desktop simulations Respond to customer security assurance requirements. Sup...