Praca: Technical Information Security Officer


Technical Information Security Officer
[online recruitment]
Location: woj. podkarpackie
Reference number: VR-59734
Project Description:

The TISO acts based on the direction of and the tasks assigned by the Divisional TISO. The TISO is assigned a set of Application Software Assets and associated Databases (IT aspects only), Infrastructure Software Assets, IT Services, Hardware Assets or IT Assets. Therefore, the TISO assumes ownership for these assets from an IT Security perspective. The TISO executes all tasks that are assigned to this role based on defined and approved rules and processes.

Responsibilities

The TISOs responsibilities within the assigned Division or Function comprise:

  • To accept the ownership and responsibility for the information security of the assigned IT Assets.
  • To carry out the Information Security Risk and Compliance Assessments for the assigned IT Assets and processes.
  • To remain fully trained and skilled by completing the required Information Security training provided by CSO or as requested by the Principal TISO or the Divisional TISO.
  • To provide guidance to key role holders such as ITAOs and ISOs to develop a secure environment by evaluating the IT Security requirements as early as possible in the system development life cycle to select the applicable information security controls for implementation. To guide ITAOs on the implementation of compensating controls in case of deviations from the applicable information security controls.
  • To approve the access control and user authorization setup of the assigned IT Assets. To execute and document periodical recertification of access rights in compliance with the DB Group Identity and Access Processes.
  • To ensure that the necessary Information Security controls are implemented, influences IT risk & control-related policies/standards and provide feedback as subject matter expert. (Co-) Design implementation measures and oversee their implementation.
  • To cooperate with key role holders such as ITAOs and ISOs to put monitoring capabilities for IT Assets in place. To review the output of the monitoring jointly with the key role holders such as ITAOs and ISOs to avoid degradation of the required security level.
  • To analyse and review the configuration of IT Assets where required and to advise on the remediation of gaps according to the applicable Information Security policies.
  • To contribute to the Information Security Incident Management Process in the case of a security breach for their IT Assets, if requested.
  • To maintain the Information Security related documentation of assigned IT Assets in the DB Group IT Asset inventory.
Skills

Education

  • Masters Degree from an accredited college or university (or equivalent Diploma) preferred
  • CISM (Certified Information Security Manager) or CISSP (Certified Information Systems Security Professional) or CISA (Certified Information Systems Auditor)
  • 6-Sigma Green Belt (Minimum) - Black Belt (Preferred)

Experience

  • 5 years experience (or comparable track record) in risk and compliance management
  • 5 years expert knowledge in a minimum two and experience in all of the following fields: operational risk management, regulatory program management, information security, data protection, quality management (CMMI or ITIL or 6-Sigma) or IT development, Excellent analytical skills to evaluate problem, root cause and resolution
  • Well proven influencing skills in a multi-cultural and globally matrixed organizations
  • Experience in translation of very complex topics in clear and crisp messages/ visions
  • Fluent in English (written/verbal)

Education

  • Masters Degree from an accredited college or university (or equivalent Diploma) preferred
  • CISSP (Certified Information Systems Security Professional) or equivalent
  • CCSP - Certified Cloud Security Professional (preferred)
  • Operating System Certification
Our offer
Career and Professional Development
  • International projects for clients all over the world
  • Competitive salary
  • Individual development plan
  • Managerial Targeted Training programs
  • BRIDGE Mentoring Program
  • Luxoft Training Center
  • Language Classes
  • Self-learning online library
  • Global Relocation Program
  • Internal Mobility (a chance to gain experience in varied projects and technologies)
  • Professional communities for knowledge-sharing (Agile, Tech, Business)
Well-being
  • Group Life Insurance
  • Travel Insurance
  • Private Healthcare (dental care, unlimited consultations of specialist physicians)
  • Medical costs reimbursement for employees
  • Benefit Program (Cafeteria and Multisport Card)
Work-Life Balance
  • LuxGood Program (a wide range of health and well-being initiatives)
  • After-hours groups (sport, trips, board games, cultural activities)
  • Company and Team events
  • BeLux - discount offers program (banking, car leasing, other)
  • Convenient locations in modern offices
Career and Professional Development
  • International projects for clients all over the world
  • Competitive salary
  • Individual development plan
  • Managerial Targeted Training programs
  • BRIDGE Mentoring Program
  • Luxoft Training Center
  • Language Classes
  • Self-learning online library
  • Global Relocation Program
  • Internal Mobility (a chance to gain experience in varied projects and technologies)
  • Professional communities for knowledge-sharing (Agile, Tech, Business)
Well-being
  • Group Life Insurance
  • Travel Insurance
  • Private Healthcare (dental care, unlimited consultations of specialist physicians)
  • Medical costs reimbursement for employees
  • Benefit Program (Cafeteria and Multisport Card)
Work-Life Balance
  • LuxGood Program (a wide range of health and well-being initiatives)
  • After-hours groups (sport, trips, board games, cultural activities)
  • Company and Team events
  • BeLux - discount offers program (banking, car leasing, other)
  • Convenient locations in modern offices
Please send your CV with consent for processing your personal data for recruitment purposes using the below button
APPLY
Informujemy, że administratorem danych jest Luxoft z siedzibą w Krakowie, ul. Bora Komorowskiego(dalej jako "administrator"). Masz prawo do żądania dostępu do swoich danych osobowych, ich sprostowania, usunięcia lub ograniczenia przetwarzania, prawo do wniesienia sprzeciwu wobec przetwarzania, a także prawo do przenoszenia danych oraz wniesienia skargi do organu nadzorczego. Dane osobowe przetwarzane będą w celu realizacji procesu rekrutacji. Podanie danych w zakresie wynikającym z ustawy z dnia 26 czerwca 1974 r. Kodeks pracy jest obowiązkowe. W pozostałym zakresie podanie danych jest dobrowolne. Odmowa podania danych obowiązkowych może skutkować brakiem możliwości przeprowadzenia procesu rekrutacji. Administrator przetwarza dane obowiązkowe na podstawie ciążącego na nim obowiązku prawnego, zaś w zakresie danych dodatkowych podstawą przetwarzania jest zgoda. Dane osobowe będą przetwarzane do czasu zakończenia postępowania rekrutacyjnego i przez okres możliwości dochodzenia ewentualnych roszczeń, a w przypadku wyrażenia zgody na udział w przyszłych postępowaniach rekrutacyjnych - do czasu wycofania tej zgody. Zgoda na przetwarzanie danych osobowych może zostać wycofana w dowolnym momencie.
APLIKUJ TERAZ

Zobacz podobne oferty

ASTEK Polska

Cloud Security Engineer

Lokalizacja: podkarpackie /

Salary: 900-1200 PLN net/day + VAT Location: 100% remote, also after pandemic (office based in Warsaw) Project start: 07.2021 In the...

Opublikowano: dzisiaj

NOKIA

Security Architect [rekrutacja online]

Lokalizacja: podkarpackie /

Location: Bydgoszcz Nokia is a global leader in the technologies that connect people and things. With state-of-the-art software,...

Opublikowano: dzisiaj

NOKIA

Security Architect [rekrutacja online]

Lokalizacja: podkarpackie /

Location: Wrocław About the project Radio Frequency Software department is looking for motivated integration and verification...

Opublikowano: 2021-05-15

Luxoft

Senior Device Security Engineer

Lokalizacja: podkarpackie /

Be Yourself. Be Open. Stay Hungry and Humble. Collaborate. Challenge. Decide and just Do. Leave your egoat the door when you come to work...

Opublikowano: 2021-05-14

Luxoft

Senior Security Quality Engineer

Lokalizacja: podkarpackie /

Be Yourself. Be Open. Stay Hungry and Humble. Collaborate. Challenge. Decide and just Do. Leave your ego at the door when you come to work...

Opublikowano: 2021-05-14

ASTEK Polska

IT Security Expert

Lokalizacja: podkarpackie /

100% zdalnie Oferujemy Stabilne zatrudnienie i wybór preferowanej formy współpracy Rozwój zawodowy w Centrach Kompetencyjnych ASTEK...

Opublikowano: 2021-05-13