Corporate IT Security & Risk Oversight Owner (ISO Corporate IT, 2nd Line of Defense)
Tasks
- Align IT security governance with management systems
- Assess BCM control effectiveness and coordinate BCM tests
- Assess security and risk implications for IT architectures
- Conduct security assessments for AI tools
- Contribute to GRC reporting and management reviews
- Coordinate audit evidence and auditor inquiry handling
- Escalate material risks control deficiencies and compliance gaps
- Execute control effectiveness monitoring
- Maintain GRC and security documentation
- Maintain corporate IT systems security classifications
- Maintain information security process descriptions
- Oversee business continuity management for corporate IT
- Perform risk-based internal audits
- Provide information security risk oversight
- Review and validate customer security questionnaires
- Review business impact analyses and continuity measures
- Support customer due diligence and assurance requests
- Support data protection assessments and audits for IT systems
- Support third-party risk management
- Track audit findings and remediation follow up
Perks/Benefits
- Birthday leave
- Christmas bonus
- Corporate discounts
- Dental insurance
- Food vouchers
- Health insurance
- Hybrid work model
- Internal training
- LinkedIn Learning access
- Professional conferences
- Referral bonus
- Sports plan
- Team events
- Transport and internet expense coverage
Skills/Tech-stack
Audit evidence | BCM | Business Continuity | Business Continuity Management | Continuity management | Control effectiveness | Customer Due Diligence | Data Privacy | Data Protection | Due Diligence | ERM | Enterprise Risk | Enterprise Risk Management | GRC | Governance Risk | Governance risk compliance | ISMS | ISO 22301 | ISO 27001 | Information Security Management | Information Security Management System | Information security | Information security risk | Internal Audit | Management System | Questionnaire Review | Risk Based Auditing | Risk Management | Risk compliance | Risk-based | SOC 1 | SOC 2 | Security Management System | Security Questionnaire | Security Questionnaire Review | Security Risk | TISAX | TPRM | Third Party | Third-Party Risk | Third-party risk management
Education
Bachelor of Engineering | Bachelor of Science | Master of Science
Related jobs
-
Senior Information Security Risk Analyst BGN 63K-70KAudit | COBIT | Data Governance | Enterprise Risk | Enterprise Risk ManagementElectric bikes | Health insurance | Hybrid work | Learning and development | Public transportation discountSenior-level Full TimeSofia, BG1d ago
-
Senior Cyber Incident Response Analyst BGN 90K-100KCyber Threat | Cyber Threat Intelligence | Digital forensics | Endpoint Security | Host Intrusion AnalysisCareer progression | Learning and developmentSenior-level Full TimeRemote - Sofia, Sofia, Bulgaria R1d ago
-
Audit evidence | Business Continuity | Business Continuity Management | Business Continuity Management System | Control effectivenessAdditional self care days off | Birthday leave | Christmas bonus | Corporate discounts | Dental insuranceSenior-level Full TimeSofia, BG, 17971d ago
-
GRC Security Expert BGN 90K-96KAudit management | Awareness Training | Compliance Monitoring | Gap Analysis | IEC 27001Senior-level Full TimeSofia, Bulgaria14d ago
-
Security Incident Handler BGN 45K-48KArcSight | Carbon Black | CrowdStrike | Cyber Kill Chain | GDPRCompany-sponsored certifications | Employee discounts | Employee recognition program | Employee referral program | Food vouchersEntry-level Full TimeBG108 - Sofia Business Park, Bldg. …24d ago
-
Application Security | Cloud Security | Cybersecurity | ISO 27001 | ISO 27017Senior-level Full TimeSofia, BG, 140724d ago
-
GRC Analyst BGN 25K-25K800-171 | 800-53 | Audit management | Business Continuity | Disaster RecoveryCertification reimbursement | Employee assistance program | Healthcare dental and vision benefits | Home office reimbursement | Multisport cardEntry-level Full TimeSofia, Bulgaria - Remote/In-Office Hybrid R1mo ago
-
IEC 27001 | ISO/IEC | ISO/IEC 27001 | Information Security Management | Information Security Management SystemDevelopment opportunities | Healthcare and wellbeing support | Pension scheme | Retail discountsMid-level Full TimeSofia, Sofia-Capital, Bulgaria1mo ago
-
Senior Manager: Governance, Risk and Compliance EUR 60K-65KBusiness Continuity | Business Continuity Planning | CE+ | Cloud Security | Continuity planningSenior-level Full TimeSofia/Plovdiv1mo ago
-
Security & Compliance Lead BGN 90K-100KAWS | Access Management | Azure | Cloud infrastructure | Compliance ManagementBirthday day off | Co-funded multisport card | Dental coverage | Employee value distribution scheme | Employee well-being programSenior-level Full TimeBulgaria - Sofia R1mo ago