Seargin

Seargin is looking for an IS Department Manager for GBS IS Security Expertise

• Position: IS Department Manager for GBS IS Security Expertise
• Technologies: IT Security, Security Services, Risk Assessment
• Localization: Remotely now, in Cracow after pandemic with 1 day of remote work per week
• Area: Project
• Form of employment: Permanent contract
• Level: Department Manager

Main tasks for the IS Department Manager for GBS IS Security Expertise will be:

• Working closely with the Corporate IS Information Security, Corporate IS Governance Risk and Compliance, GBS IS Consumer Excellence, GBS IS Capabilities, GBS IS Domains, Business IS and 3rd Party IS Suppliers to assure understanding of existing business requirements, new service demand and security design and roadmap
• Creating and delivering risk driven directions and resilience testing services aiming to better overall security posture across company IS landscape and minimize potential negative business and reputation impact in case of security incident
• Promoting secure software development practices and providing risk quantification, advanced security consulting / advisory and application resilience validation services across company IS landscape in alignment with Corporate IS Information Security guidance, design, and roadmap. Assuring periodic security posture reporting to the business and suggesting risk driven resolutions
• Deploying effective interfaces between local/corporate IS teams for all security activities and, where required, assuring adherence to requirements in line to agreed service level agreements (SLAs), that agreed time, budget and quality specifications are met. Deploying department’s practice expertise leading to improved efficiency or operational functionality
• Delivering proper reports on time for all security services delivery to various Corporate IS or Business IS functions
• Creating strong relationship with key stakeholders in Corporate IS Functions, Business IS and GBS IS. Making sure that tracking and monitoring of performance of service delivery through all channels (human, digital, self-service, automated) is carried out, metrics and reports are analyzed, and problems are resolved to meet agreed service levels
• Appointing and controlling a comprehensive risk focused monitoring metrics to assure efficient delivery of security services meeting business requirements. Developing and maintaining process for interaction and communication between Corporate IS, Business IS, GBS IS esp. Architecture and Domains to enable risk-based decisions
• Taking part in technological strategy development and planning to ensure build in security. Continuously improving services and solutions to provide better security protection and incident detection across the company landscape
• Actively participating in developing and maintaining appropriate Security competence within the department, ensuring alignment to given IS goals, company’s Regulations and Guidelines, IS Architecture and IS Security best practices. Giving input for the development of IS internal security Policies and Standards
• Closely cooperating with Corporate IS, GBS IS Capabilities Architecture, GBS IS Domains and Business IS to understand related business process demand to existing or new relevant IS solutions
• Heading senior security professionals and groups. Defining and delegating management responsibilities. Setting performance objectives, and monitoring progress against agreed quality and performance criteria. Initiating, developing, and controlling effective performance management processes. Setting the example for proactively building working relationships within the team, Corporate IS, GBS IS Domains, Businesses and Consumers
• Living company’s core values of safety and integrity, which means taking responsibility for his/her own actions and caring for his/her colleagues and the business at the same time

The Candidate should have:

• Educational background in Information Technology, Computer Science, Software Engineering with Bachelor’s or Master’s degree, or similar qualification, and/or proven capability through past professional background
• At least 15 years of experience in Information Security and/or Information Risk Management with at least 6 years in leading service delivery and security operations
• Expertise in risk assessment and management, consultancy, secure software development life cycle and application resilience validation (scanning, Penetration Testing, Ethical Hacking etc.)
• Extensive experience in security services operations from design, launch and maintenance across network, end point, datacenter/cloud, vendor management etc.
• Hands-on experience in common information security management frameworks, such as International Standards Organization (ISO) 2700x, National Institute of Standards and Technology (NIST) 800-53
• Great leadership skills to manage and motivate distributed, international teams, experience in building strong relationships with internal and external stakeholders
• Deep knowledge of or expertise in: information security management and governance, IT risk assessment and management, IT Audit, the overall context of business processes and IS technologies
• Ability to present complex and technical issues to diverse audiences including senior management
• Following certifications:
  • ITIL 4 Foundation
  • CISM (Certified Information Security Manager)
  • CISA (Certified Information Systems Auditor)
  • CISSP (Certified Information Systems Security Professional)
  • Certified Cloud Security Professional (CCSP) certifications
• Team-oriented, detail-oriented, efficient and solution-oriented attitude
• Superb analytical and problem solving skills
• Excellent communication and interpersonal skills
• Flexibility and ability to work independently and in a team
• Great English skills (written and spoken)

The Candidate can expect:

• Permanent Contract
• Individual development and training opportunities, from job specific to soft skills
• Private medical care and life insurance
• Healthy lifestyle offerings, knowledge sharing and teambuilding activities
• Challenging job in an international and multilingual environment
• Attractive, competitive compensation

If you meet requirements described above, please send your application in English (.doc) at tomasz.dombrowski@seargin.com, stating the name of the position in a subject and/or call +(48) 728 432 948.