Oferty pracy

< Back

Risk and Control Senior Specialist

Salary:
1200 - 1500 pln net/md + VAT
Type of employment:
B2B
Date:
2024.09.13
Location:
Kraków
Job description

Creating an inspiring place to thrive for the talented, we use their expertise and courage to introduce the technology of the future into your business. - This is the foundation of Mindbox and the goal of our business and technology journey. We operate and develop in four areas:

🤖 Autonomous Enterprise - automation of business processes using RPA, OCR, and AI.

🌐Business Managment Systems ERP - we implement, adapt, optimize, and maintain flexible, safe, and open ERP of production and distribution companies worldwide.

🤝Talent Network - we provide access to the best specialists.

☁️ Modern Architecture - we build integrated, sustainable, and open CI / CD environments based on containers enabling safe and more frequent delivery of proven changes in the application code.

We treat technology as a tool to achieve a goal. Thanks to our consultants' reliability and proactive approach, initial projects usually become long-term cooperation. For over 16 years, it has provided various services to support clients in digital transformation.

#LI-Hybrid

1 day/week office in Kraków

Offer
  • We are open to the employment form according to your preferences 
  • Work with experienced and engaged team, willing to learn, share knowledge and open for growth and new ideas 
  • Hybrid or remote working system 
  • Mindbox is a dynamically growing IT company, but still not a large one – everybody can have a real impact on where we are going next
  • We invest in developing skills and abilities of our employees
  • We have attractive benefits and provide all the tools required for work f.e. computer
  • Interpolska Health Care, Multisport, Warta Insurance, training platform (Sages) 
Tasks

 

We are seeking an experienced and dynamic individual to join our team as an Risk and Controls  Senior Specialist and play pivotal role in securing our organization’s IT landscape.

 

What you’ll do

 

·      Lead and manage IT group control initiatives to identify, assess, and mitigate risks across the organization’s IT landscape.

·     Develop and implement risk management strategies, policies, and procedures to ensure the security and integrity of IT systems and data.

·      Conduct regular risk assessments and vulnerability assessments to proactively identify potential threats and weaknesses in IT infrastructure.

·       Collaborate with cross-functional teams to establish and maintain effective risk mitigation plans and remediation strategies.

·       Stay current with industry trends, emerging technologies, and regulatory requirements to inform risk management practices.

·       Provide guidance and expertise to IT teams on risk-related matters, fostering a culture of risk awareness and compliance.

·   Design and execute training programs to enhance the organization’s understanding of IT risk management and control measures.

·    Collaborate with internal and external auditors to facilitate audits and assessments, ensuring compliance with industry standards and regulations.

·   Develop and maintain key control indicators (KCIs) and key performance indicators (KPIs) and metrics to measure the effectiveness of risk management efforts.

·       Investigate and respond to IT security incidents, coordinating incident response activities and ensuring timely resolution.

·       Continuously evaluate and enhance the IT risk management framework to adapt to evolving threats and business needs..

Requirements

 

·     Bachelor’s degree in Information Technology, Computer Science, or a related field; relevant certifications (e.g., CISA, CISSP) are a plus.

·       Proven experience in IT risk management, control, and remediation, with a focus on enterprise-level environments.

·       Strong knowledge of industry standards, regulations, and best practices related to IT risk and security.

·       Excellent analytical and problem-solving skills with the ability to assess complex IT environments and identify potential risks.

·      Effective communication and interpersonal skills to collaborate with diverse teams and convey risk-related information to non-technical stakeholders.

·       Experience in developing and delivering training programs on IT risk management and security awareness.