Firma Devonshire powstała w 2001 roku i specjalizuje się w prowadzeniu kompleksowych projektów rekrutacyjnych, które obejmują wszystkie jednostki biznesowe Klienta.
Nasze biura, zlokalizowane w Warszawie, Wrocławiu, Poznaniu, Katowicach oraz Monachium i Frankfurcie, skutecznie pomagają Klientom przezwyciężać nawet najtrudniejsze wyzwania rekrutacyjne.
Jesteśmy częścią DEVONSHIRE INVESTMENT GROUP – spółki działającej na rynku szeroko rozumianych usług HR, Rekrutacji i Outsourcingu IT.
ISO 27001 Specialist
Miejsce pracy/Location: Wrocław
Nr ref.: DEJS03914
Twoja Przyszła Firma / Your future Company
As a truly worldwide organization, company spans all geographies, practices, service lines, sectors and competencies with deeply-integrated services. With 20,000 people working from nine centres in five countries, Company Global Delivery Services unit is online everywhere, helping deliver exceptional client service all the time; providing what you need, where you need it.
Company office in Poland has been in operation since 2011, supporting 30 countries across 12 services in English and non-English languages. Join one of our innovative and highly skilled teams and gain valuable experiences that will last a lifetime.
IT Services is a global organization that works with our internal clients, to provide IT support and solution to client teams, internal support functions and global projects and programs. Over the next few years, Company Global Delivery Services unit in Poland will increase the number of IT professionals in its center to develop and support company business and internal applications. These professionals include IT project managers, business analysts, software architects, infrastructure engineers.
IT Services team maintains and enhances company IT infrastructure and works for our internal clients across the globe. You will work with company locations, supporting our service lines and key business processes or be part a dedicated IT team handling cross-organizational initiatives and transformational projects.
Company office in Poland has been in operation since 2011, supporting 30 countries across 12 services in English and non-English languages. Join one of our innovative and highly skilled teams and gain valuable experiences that will last a lifetime.
IT Services is a global organization that works with our internal clients, to provide IT support and solution to client teams, internal support functions and global projects and programs. Over the next few years, Company Global Delivery Services unit in Poland will increase the number of IT professionals in its center to develop and support company business and internal applications. These professionals include IT project managers, business analysts, software architects, infrastructure engineers.
IT Services team maintains and enhances company IT infrastructure and works for our internal clients across the globe. You will work with company locations, supporting our service lines and key business processes or be part a dedicated IT team handling cross-organizational initiatives and transformational projects.
U Kandydatów zwracamy uwagę na / We are looking for
- Degree in computer science or a related discipline
- English language skills - excellent written and verbal communication
- 5+ years of experience in a significant Information Security risk management function
- 5+ years of experience in an Information Security or Information Technology
- Lead ISO 27001 Implementer and/or Lead ISO 27001 Auditor certification
- Hold one of the following or equivalent certifications: Certified Information Systems Security Processional (CISSP), Certified Information Security Manager (CISM), Certified Information System Auditor(CISA) Certified Internal Auditor (CIA) , or Global Information Assurance Certification (GIAC)
- In-depth familiarity with the ISO 27001:2013 standard
- Experience and knowledge in previous ISO 27001:2013 implementations
- Experience in conducting on-site audits and managing the entire lifecycle for risk treatment and corrective action plans
- An Information Security background to speak intelligently to both technical and non-technical teams and understand the variation of risks posed to the firm in different situations
- Exceptional judgment, tact, and decision-making ability
- Outstanding management, interpersonal, communication, organizational, and decision-making skills
- Strategic skills to assist with the development of a long-term vision for the firms IT risk management framework & approach
- Demonstrated integrity and judgment within a professional environment
- Ability to appropriately balance firm security needs with business impact & benefit
- Flexibility to adjust to multiple demands, shifting priorities, ambiguity and rapid change
- Ability to deal efficiently with escalations and difficult situations/people under pressure
Nasz Klient Zapewnia / Our client offers
- Work in prestigious stable company
- Contact of employment
- Fair salary
- Relocation package
- Participating in interesting projects
- Work in a professional, dynamic, truly global team
- Development opportunities in international multilingual environment
- Attractive social package (sport card, medical insurance, life insurance, wellness & spa program, sport events and many others)
- Language courses
- Modern office space near market square
- Home office up to 3 days per week
- Maintain intake process for new entities to engage the ISFM team
- Build and maintain local relationships within different geographic locations
- Plan and coordinate certification activities with internal and external stakeholders as well as vendors
- Plan and coordinate, conduct and lead site assessments for each entity in scope
- Work closely with local area contacts to identify information security control processes and associated ownership
- Identify all resources required for implementation and surveillance audit activities
- Understand and be able to implement all aspects of the ISO 27001:2013 standard
- Clearly define scope and objectives to stakeholders and process owners
- Create appropriate ISMS documentation specific to each implementation
- Work with local area contacts and management for risk treatment and acceptance
- Responsible for the selection and performance management of staff members
- Plan the training and development of staff to develop their skills and maintains state-of-the-art knowledge in information security
- Evaluate, counsel, mentor and provide feedback on performance of others
- Direct the daily progress of work assigned to staff members, report status to management, and manage staff performance