Main responsibilities of the position:
Documents and implements information risk management policies,
procedures and guidelines, based on ISF, NIS 2 , Cobit, ISO 27000
Standards
Conducts oversight of the internal control environment within the
business lines of Information Technology and Information
Security
Performs deep-dives according to the requirements of the internal
standards
Participates in validations, internal security tests,
assessments
Provides recommendations for improvement when deficiencies are
identified
Prepares internal and external reporting in the area of information
risk management
Develops and implements information security measures that align
with the business processes and adhere to best practices
Provides advise/opinion on information risk management related
topics
Monitors for IS program innovations and technology trends of cyber
threats and vulnerabilities
Facilitates the communication between the local entities and the
group functions
Competences we look for:
University degree in information technology, computer science,
information security or similar
Experience in IT Security and/or Risk Management field (at least 3
years)
Self-learner, with strong analytical, planning and problem-solving
skills, with ability to work under pressure
Excellent command of English (written and spoken)
Any security certifications (CISM, CRISC, CEH, CSX or similar)
shall be considered as a strong advantage
You will find:
Excellent opportunities for professional and career development in
one of the leading banks in Bulgaria
Competitive remuneration
Various opportunities for learning and further development of the
professional skills and competences
Preferences for the bank products and services
Additional health insurance
Life/Accident Insurance
Food vouchers - 80 BGN
Referral program
Additional bonus for important life events
Hybrid working model and flexible working time (for the employees
in Head Office)
25 days annual paid leave
Sport card
Participation in a solidarity fund which helps employees and their
families when necessary