For our client’s company operating for over 10 years in the IT market delivering end to end solutions within insurance sector both to the international and Polish marekt, we are now search for candidates for the position of

IT Security Compliance Specialist

About a role:

Policy driven generalist that is able to assist with the implementation of missing processes.

Able to„understand” gaps on a technological level and modify policies based on current and planned infrastructure.

Must have experience in documenting and implementing SDLC processes.

Tasks and competences:

• Expert knowledge in one of more of the following security and data frameworks such as: ISO27001/SOC 2/GPDR/UKNF/PCI DSS
• Ability to identify noncompliant policies and gaps.
• Collaborate in the creation of a security knowledge base.
• Assist in implementing common processes such as change management.
• Assist in aligning access policies and understands access management on a higher level.
• Has a good understanding of infrastructure tools used to maintain compliance.
• Tools used to maintain SIEM, SOAR, Jira, Zabbix etc..
• Basic understanding of how software development works.
• Understanding basic software development processes and tools used such as Github unified, SonarQube, Jenkins, Pen tests.
• Understanding of the agile/scrum framework.
• Polish and English – B1 level

Experience:

4 years in an ISO/SOC compliant environment.

The company offers:

• possibility of joining innovative environment with high level of autonomy and continuous development
• knowledge sharing culture and close cooperation with experts
• parking space
• shower for funs of morning running or cycling
• large kitchen with a constant supply drinks and fruits
• flexible working hours (you can arrive between 6.00 and 10.00)
• hybrid work mode
• english lessons with a native speaker during working hours
• multisport card, private medical care and life insurance for you and your family, Sodexo cards