EMPREGO

Information Security Auditor

Transition Technologies PSC Sp. z o. o.-Kielce, Polônia

Information Security Auditor Kielce:
What will you do?:
Responsibilities:

  • Participation in personal data protection compliance audits
  • Participation in ISO 27001, TISAX, SOC 2 information security audits
  • Participation in proceedings related to obtaining and maintaining certification in the area of information security and cybersecurity
  • Monitoring compliance with laws and regulations related to information security and personal data protection
  • Support in updating documentation and monitoring the Information Security Management System (ISMS) ISO 27001
  • Support in maintaining and updating documentation of personal data processing
  • Support in the risk analysis process and development of risk management plans
  • Participation in the process of managing incidents and personal data protection breaches
  • Support in giving opinions and creating contracts regarding the protection of personal data
  • Support in conducting internal training

_Who are we looking for?:
Requirements:

  • At least one year of experience in a similar position
  • Knowledge of legal regulations and good practices in the area of personal data protection
  • Knowledge of basic issues related to IT system security
  • Basic knowledge of ISO/IEC 27001:2017/2022 and ISO/IEC 27002:2022 (in particular Annex A.)
  • Knowledge of basic issues related to IT system security
  • Ability to work in a distributed team
  • Higher education
  • Knowledge of Windows and MS Office
  • Category B driving license
  • Knowledge of English sufficient to enable free communication and analysis of documentation, e.g. contracts

Nice to have:

  • Experience as a Data Protection Inspector or a Personal Data Protection specialist
  • ISO/EIC 27001:2013 internal auditor certificate
  • Other certificates in the field of security and cybersecurity
  • Completed postgraduate studies in the field of audit, information security or personal data protection
  • Knowledge of methodologies for performing risk analysis, e.g. in accordance with the ISO/EIC 27005 standard
  • Experience in organizing and conducting training
  • Experience in conducting internal audits

_Why is it worth it?:
What can we offer:

  • Flexible forms of employment and working hours (CoE or B2B)
  • An interesting, challenging job in the dynamically developing Capital Group company
  • Work on innovative projects using modern technologies
  • Direct impact on shaping the image of the Capital Group’s companies on the market
  • Possibility to develop competences in a wide range
  • Attractive salary
  • Stability of employment and a friendly work atmosphere
  • Cool benefits, among others integration meetings, internal company competitions, fruit Tuesdays, sweet Thursdays and much more