Corporate IT Security & Risk Oversight Owner (ISO Corporate IT, 2nd Line of Defense)
Tasks
- Align IT security with governance risk compliance
- Assess BCM control effectiveness and coordinate BCM tests
- Assess security and risk impacts of IT architectures
- Contribute to GRC reporting and management reviews
- Coordinate ISMS process creation and improvement
- Escalate material risks and compliance gaps through GRC channels
- Execute risk based internal audits
- Maintain security oversight inventory for IT systems
- Maintain security risk data protection and audit documentation
- Monitor control design and control effectiveness
- Oversee business continuity management within IT
- Provide audit evidence and handle auditor inquiries
- Provide information security risk oversight
- Review and validate customer security questionnaires
- Review business impact analyses and continuity measures
- Support AI tool security and risk assessments
- Support data protection matters for IT systems
- Support external certifications and audit readiness
- Support third-party risk management
- Track audit findings and remediation follow up
Perks/Benefits
- Additional self care days off
- Birthday leave
- Christmas bonus
- Corporate discounts
- Dental insurance
- Food vouchers
- Health insurance
- Hybrid work
- Internal training
- Internet expenses covered
- LinkedIn Learning access
- Professional conferences
- Quarterly travel to Germany
- Referral bonus
- Sports plan
- Team events
- Transport expenses covered
Skills/Tech-stack
Audit evidence | Business Continuity | Business Continuity Management | Business Continuity Management System | Control effectiveness | Customer Due Diligence | Data Protection | Data Protection Management | Data Protection Management System | Due Diligence | Enterprise Risk | Enterprise Risk Management | GRC reporting | Governance Risk | Governance risk compliance | ISO 22301 | ISO 27001 | IT Audit | Information Security Management | Information Security Management System | Information security | Internal Controls | Management System | Risk Based Auditing | Risk Management | Risk compliance | Risk-based | Security Management System | Third Party | Third-Party Risk | Third-party risk management
Education
Bachelor of Engineering | Bachelor of Science | Master of Science
Related jobs
-
Senior Information Security Risk Analyst BGN 63K-70KAudit | COBIT | Data Governance | Enterprise Risk | Enterprise Risk ManagementElectric bikes | Health insurance | Hybrid work | Learning and development | Public transportation discountSenior-level Full TimeSofia, BG1d ago
-
Audit evidence | BCM | Business Continuity | Business Continuity Management | Continuity managementBirthday leave | Christmas bonus | Corporate discounts | Dental insurance | Food vouchersSenior-level Full TimeSofia, BG, 17971d ago
-
Audit planning | Cause analysis | Corrective Action | Enterprise Risk | Enterprise Risk ManagementDevelopment opportunities | Healthcare and wellbeing support | Pension scheme | Retail discountsMid-level Full TimeSofia, Sofia-Capital, Bulgaria4d ago
-
GRC Security Expert BGN 90K-96KAudit management | Awareness Training | Compliance Monitoring | Gap Analysis | IEC 27001Senior-level Full TimeSofia, Bulgaria14d ago
-
Application Security | Cloud Security | Cybersecurity | ISO 27001 | ISO 27017Senior-level Full TimeSofia, BG, 140724d ago
-
API Security | AWS | Access Control | Audit Logging | Business ContinuityAdditional health insurance | Annual training budget | Food vouchers | Hybrid work model | Onsite fitness centerMid-level Full TimeSofia, Sofia1mo ago
-
IEC 27001 | ISO/IEC | ISO/IEC 27001 | Information Security Management | Information Security Management SystemDevelopment opportunities | Healthcare and wellbeing support | Pension scheme | Retail discountsMid-level Full TimeSofia, Sofia-Capital, Bulgaria1mo ago
-
Senior Manager: Governance, Risk and Compliance EUR 60K-65KBusiness Continuity | Business Continuity Planning | CE+ | Cloud Security | Continuity planningSenior-level Full TimeSofia/Plovdiv1mo ago
-
Security & Compliance Lead BGN 90K-100KAWS | Access Management | Azure | Cloud infrastructure | Compliance ManagementBirthday day off | Co-funded multisport card | Dental coverage | Employee value distribution scheme | Employee well-being programSenior-level Full TimeBulgaria - Sofia R1mo ago