Krakow, Poland


Information Technology



Job ID


MAKE HISTORY WITH US! At PMI, we’ve chosen to do something incredible. We’re totally transforming our business, and building our future on smoke-free products with the power to improve the lives of a billion smokers worldwide. With huge change, comes huge opportunity. So, wherever you join us, you’ll enjoy the freedom to dream up and deliver better, brighter solutions and the space to move your career forward in endlessly different directions. JOIN US! Design, engineer, and manage best-in-class technical security capabilities and advanced security solutions to protect company information, prevent data loss/leakage, and ensure that PMI data is secured across the global (cloud-based) IT landscape. WHO ARE WE LOOKING FOR? •3+ years of experience as an IT security engineer (or a similar technical SME role) in a large corporate organization •Thorough understanding of information security concepts such as data loss/leakage prevention (DLP), a cloud access security broker (CASB), an insider risk management (IRM) as well as technical data security controls (encryption, tokenization, anonymization, watermarking, etc.) •Proven track record in building, rolling out, and operating security technologies that provide the ability to monitor, detect and action sensitive content within files and data streams, with a strong focus on Microsoft 365 collaboration tools (e.g. emails, documents in OneDrive, Teams, SharePoint, etc.), endpoints (e.g. Windows 10 devices), and AWS storage services (e.g. S3) •Deep and broad technical expertise in working with major cloud computing providers' security and data protection tools, with a strong focus on Microsoft 365 (e.g. AIP, Office DLP, Endpoint DLP, MCAS, IRM, etc.) •Familiarity with internationally-recognized frameworks and standards (e.g. NIST, ISO) and regulations (e.g. GDPR, PCI DSS) relevant to information security, privacy, or data protection •Solid understanding of (both classic and agile) project, service, and change management methodologies proven by experience in new ways of working (e.g. Kanban, Scrum, SAFe) and with modern toolset (e.g. Confluence, Jira) •High level of personal integrity and work ethics to handle confidential matters professionally and responsibly •Microsoft 365 specific certification (such as SC-400, MS-500) or other cyber security certificates (such as CISSP, CISA, CISM) would be a plus; • fluent English WHAT WE OFFER? •Private medical and dental care, life insurance •Lunch card (Sodexo) •Remote work opportunity and flexible working arrangements •Employee pension plan •Multisport program •Cafeteria program •Wide range of trainings, optional language classes, further education and professional qualification support possibility •Free bike and car parking for all employees HOW CAN YOU MAKE HISTORY WITH US? Be a technical SME in your domain passionate about security engineering to protect the company brand, shareholder value, information assets, and help ensure regulatory compliance. •Define and maintain a technical architecture of managed data security solutions/tools •Convert data security requirements (both technical and business process related) into functional and technical specifications taking into account technical constraints and potential integration or operational challenges •Formalize (e.g. in the form of solution specifications, diagrams, procedures, etc.) relevant technical data security technologies and adjacent operational processes (e.g. change management, exception handling, etc.) •Implement and manage security tools and policies (e.g. DLP, CASB, IRM, etc.) in alignment with the data security requirements as well as functional and technical specifications •Liaise with the InfoSec Architecture community to ensure that data security principles are effectively and efficiently embedded in new IT data security solutions/tools •Research, evaluate, recommend, and implement new or updated data security technology solutions that will reduce cyber risk to the Company or otherwise increase performance, reliability, cost-effectiveness or flexibility Please note that only on-line applications will be taken into consideration. Only selected candidates will be contacted.