IT Security Governance Engineer in Global Security Team - (Matternity leave cover)

Company Description

InPost Group is an innovative European out of home deliveries company, revolutionizing the way parcels are delivered to customers. With operations across several countries, our network of intelligent lockers provides customers with a fast, convenient, and secure delivery option. InPost Group is a publicly traded company, with a market capitalization of about $5 billion as of March 2023. With over 10,000 employees worldwide, InPost Group is one of the largest out of home delivery providers in Europe, committed to providing sustainable and efficient delivery solutions to meet the evolving needs of customers in today's rapidly changing landscape.

Job Description

We are seeking an IT Security Governance Engineer to join our Global Security Team as a replacement for a period of 18 months. The ideal candidate will have a background in security, testing, vulnerability management, workload coordination, audits, procurement and security trainings. Familiarity with technologies like JIRA, KnowBe4, SAP, M365 would be desirable. Strong experience with Office Package is mandatory.

Key Responsibilities:

• Security Awareness:
  • Development and oversight of the whole Security Awareness Program, in particular:
    • Preparing training and phishing campaigns and materials, reconciling them in accordance with the training schedule.
    • Preparing on-demand, monthly, quarterly, and annual reports on phishing and training campaigns.
  • Administrative support and maintenance of the security training platform, assisting other teams with the use of the platform.
• Security Tests:
  • Development and oversight of whole Security Testing stream, managing the penetration testing process, including:
    • Scheduling tests with an external companies, supervising the execution of tests, overseeing the remediation of identified vulnerabilities.
    • Approving or rejecting production deployments and reconciling test costs.
    • Managing the Bug Bounty program.
    • Handling periodic vulnerability scans performed by different entities.
• Procurement:
  • Managing the SAP system for preparing purchase requests and reconciling invoices
  • Describing invoices according to the budget line
  • Cooperation with Purchasing, Controlling and Invoicing departments on Security costs allocation and re-invoicing
• Third-Party Risk Management (TPRM):
  • Reviewing supplier contracts for compliance with internal security procedures
  • Completing security questionnaires for external entities
• Security workflow coordination and communication:
  • Co-managing the department's email inboxes and ticketing systems
  • Coordination support for internal and external audits
  • Preparing communication in accordance with internal communication guidelines, single point of contact for all Security communication on all Markets.

Qualifications

• Bachelors or postgraduate degree in computer science, Information Technology, or a comparable experience.
• 2+ years of experience in IT Security or related domain.
• Strong understanding of IT Security concepts, tools and processes.
• Experience with security testing and vulnerability management.
• Excellent communication and collaboration skills.
• Fluent in English (B2/C1 level).
• Command of French language would be a big plus.
• Nice to have: experience with training campaigns, purchasing processes, executive presentations.

Additional Information

• Professional growth within the company
• Excellent working environment
• Flexible working hours
• Possibility of remote work in Poland.