BPiON is one of the fastest-growing outsourcing companies in the field of accounting and payroll / HR in the markets of Central and Eastern Europe, founded by BPO experts with over 20 years of experience. BPiON employs almost 100 people in three countries (Poland, Hungary, Romania). We are part of the IR Global – a multi-disciplinary professional services network that provides legal, accountancy, financial advice to companies and individuals (www.irglobal.com). We are currently looking for Information Security Specialist in Warsaw, Poland.
Main tasks:
1. Responsible for internal security control:
- responsible for developing the data governance and most of all information security concept, as well as information architecture for all systems of the company
• implement the company security and risk management strategy and be able to apply that as a fundamental pillar of the transformation strategy
• control of applications environment/IT/Interfaces development
• evaluate and approve technical solutions for Clients
• plan and perform audits of Information Security and other IT procedures
• Verify that requirements for information security have been met before any new system is put into production
• Serve as an Application security liaison for the developers and architects
• Responsibility for detection, triage, incident analysis, containment and remediation
2. Access management:
- Setting and implementing user access controls and identity and access management systems
- Manage passwords for the applications and systems
- Regularly verify that only authorized users have access to relevant systems and applications
- Monitor and execute user access control and user profile management for servers and networks based on documented business approval
3. Cooperation with IT and Digital Transformation Team:
- acting as an interface between the business and IT departments
- assists IT functions with their security system design and setup documentation to ensure compliance with the relevant standards
- Working with IT to set up a shared disaster recovery/business continuity plan
4. Data Security management:
- Assure that all systems equipment and network components have appropriate backup/restore arrangements and related disaster recovery capabilities
- Master data management
Requirements:
- Min 2+ years of experience in Information Security in M365 and Azure (Relevant Azure Certifications required)
- Demonstrated experience of contributing to IT Security project
- Expertise in the field of information systems security, including areas such as identity and access management, security program policies, processes, and procedures
- Understanding of emerging technologies and their impact on security architectures: service orientated architecture, enterprise frameworks, message-based information exchange, etc.
- Experience with Industry controls and frameworks for audit, risk, compliance, security, governance and/or enterprise risk (COBIT, COSO, ISO27001, SOC) will be an advantage.
- Good command of written and spoken English (at least B2+)
What do we offer:
- employment contract,
- flexible working hours (8-9:30 /16-17:30),
- development opportunities in the area of accounting,
- participation in creating the culture of the organization and workplace,
- private medical health-care,
- English course,
- friendly work atmosphere,
- delicious coffee/tea, beer bar,
- work in the heart of Warsaw at the WeWork office, ul. Krakowskie Przedmieście 13.