Information Security Risk Specialist

WROCŁAW

Job description

As a market-leading credit management company, Intrum has wide-ranging expertise in debt collection services, and we do business in 25 countries in Europe. We have two service lines Credit Management Services and Portfolio Investment. The Portfolio Investment unit invested in over €1bn of Non-Performing Loans (NPLs) the past 12 months, making us on of the world’s largest investors in NPLs.

Information Security Risk Specialist implements the group’s strategy and practices for continuous monitoring of information security in the supply chain for outsourced deliveries from third party vendors. The Information Security Risk Specialist is also responsible for organizing information/IT security assessments of critical third parties, in collaboration with the Group Information Security team, the Group Vendor Management team and the business units. The Information Security Risk Specialist follows up risk mitigation plans with risk owners and internal and external stakeholders  The Information Security Risk Specialist reports to the CISO.

Within the Group Information Security team, the Information Security Risk Specialist is also responsible for coordinating the group-wide security training and awareness program.

Key tasks / responsibilities:

  1. Perform information security risk assessments for third party assets and vendors of Intrum Group.

  2. Evaluate technologies and services to support information security monitoring capabilities and operational effectiveness of security related controls.

  3. Monitor risks and report changes, manage third party risk dashboards and report to management on a regular basis.

  4. Provide clear risk reports with recommendations to enable the Group and its business entities to make informed risk decisions.

  5. Participate in contractual reviews for new and existing suppliers.

  6. Draft vendor related security procedures, templates and standards.

 

We expect you to have:

  • Bachelor's degree in the area of IT, equivalent educational or professional experience and/or qualifications.
  • At least 1 year experience with security management and/or vendor risk management.
  • English is a mandatory language requirement.
  • Broad conceptual understanding of IT technologies. Technical background is preferable.
  • Knowledge and experience of security assessment/audit principles.
  • Excellent communication skills.
  • Expertise in two or more of these subjects:
    • Application security
    • vulnerability management,
    • third party risk,
    • vendor management,
    • CISSP, CRISC, CISA, or other security/audit certifications is preferred

 

We expect you to be:

  • Attentive to detail.
  • Curious and not afraid to take initiatives.
  • Taking ownership of assigned tasks.
  • Self-sufficient, being able to work independently.

 

We offer:

  • Attentive to detail.
  • Curious and not afraid to take initiatives.
  • Taking ownership of assigned tasks.
  • Self-sufficient, being able to work independently.
  • Work in diverse environment, spanning whole Europe, with offshore subsidiaries.
  • Clear work hours and perfect work-life balance.
  • Interesting challenges.
  • Competitive renumeration and training packages.
  • Private healthcare & social benefits.

 

Jesteś zainteresowany / zainteresowana?

Czekamy na Twoje zgłoszenie: Rekrutacja.pl@intrum.com

 

Koniecznie zapoznaj się z informacją o przetwarzaniu danych osobowych dla kandydatów do pracy w Intrum.