Information Security Analyst in Constanţa

Must have skills: IT Security and risk management experience and background Knowledge of ISO27001 framework GDPR regulation Knowledge about IT infrastructure (Cloud), operations, software, hardware, tooling, data flows, change control, BC/DR BS in Computer Science, MIS or similar field Upper-intermediate English Ability to have a business trip to Gdansk (Poland) once in 6 months Nice to have skills: Experience as an IT Manager, Information Security Manager, or CyberSecurity Manager (Preferred, but not required) Responsibilities: Conduct the continual improvement, maintenance, and development of ISO27001 Information Security Management Program Quarterly check on completeness of internal auditing of ISO27001. Performing risk and control assessments and deep dives within various product and technology teams Oversee information security audits performed by third-party personnel Create and deliver training and awareness program for the personnel globally Develop, maintain, implement, and support procedures and measures to ensure compliance with all applicable -Information Security legislation Understanding the operational environment of the equipment and the cyber security risks that this presents, identifying threats, vulnerabilities and mitigations When necessary. engage with internal and external stakeholders on the company’s IT risk posture We offer: Annual paid vacation (20 working days) and 10 days of sick leave Office in Gdansk (Poland) or remote Corporate laptop Poland public holidays are days off A friendly and international team Flexible working hours A stable, long-term project Type of contract: B2B or Contract of mandate (umowa zlecenie) Recruiting stages: HR interview — 30 min Interview with direct manager — 60 min