IT Risk & Security Compliance officer (f/m/d)

Your area of work:

The Monitoring & Application Support team provides support to the company mission critical applications and environments 24/7 and ensures that all applications and services are all up and running at all times according to service level agreements. This is for all internal Users as well as external Customers. The application landscape has very strong security requirements and calls for expertise around security and compliance matters. Security features for all our frontend as well as backend environments and applications is a core concern and require a high level of expertise to protect the company and Customer assets.

As an IT Risk and Security Compliance Officer, you will be responsible for managing our risks and independently take over the support of security contents and processes. You will act as an interface between build and run teams on one hand and internal and external auditors on the other. You will ensure that all processes are compliant and secure. As such we are looking for a person who will be able to assess security matters around asset management, Privileged Access Management (PAM), writing /reviewing of official security related documentation and corporate standards, review of security concept / information classification / authorization concept / risk assessment monitoring and reporting for security related topics.

Your responsibilities:

• Central point of contact for security risk and support of the risk assessment process
• Implementing and maintaining privileged access management
• Drafting and reviewing official security documentation and corporate standards
• Developing security concepts, including information classification, authorization concept, and risk assessments
• Risk Management writing and assessment
• Monitoring and reporting on security-related matters
• Documenting current and future security architectures and patterns.
• Managing security, risk and audit relevant documentation
• Review of risk related matters across asset and applications landscape

Your profile:

• University degree in Computer Science or IT related discipline
• Minimum of 2-3 years of related work experience
• Understanding of risk and security requirements
• Understanding of ISO 27000-family of information security standards
• Ability to independently prioritize
• Excellent time management skills with ability to work to tight deadlines
• High sense of responsibility and ability to work independently, efficiently and target oriented
• Reliable, resilient as well as a professional, friendly and confident appearance
• Good communication skills, organization skills, quick learner and flexible
• Excellent written and spoken English

You can look forward to our benefit package:

• Hybrid Work and Flexible working hours
• Work from abroad - 12 days of remote work from EU countries per year
• Group Share Plan - discount on company shares
• Pension fund contribution - 3% of your gross salary (5% after 5 years with us)
• Health & Wellbeing - fully covered Multisport card, life & accident insurance, sick days and 100% salary contribution during sick leave (up to 56 days)
• 25 vacation days
• Mobility - fully covered public transport in Prague & free parking
• Flexible Benefit Account (Pluxee) - 1200 per month
• Personal Development - annual budget of €690 ... and way more!