Krakow, Poland


Information Technology



Job ID


MAKE HISTORY WITH US! At PMI, we’ve chosen to do something incredible. We’re totally transforming our business, and building our future on smoke-free products with the power to deliver a smoke-free future. With huge change, comes huge opportunity. So, wherever you join us, you’ll enjoy the freedom to dream up and deliver better, brighter solutions and the space to move your career forward in endlessly different directions. JOIN US! Overlook the Technology Engineering functions control framework and governance processes by assuring alignment with regulatory requirements, standard methodologies, and industry trends. We want to enable our Engineering teams to deliver the best class products. Be part of an experienced team to craft new interfaces between various partners and to understand subtle changes in the regulatory, technology, and risk environments to ensure that PMI stays ahead of these changes. WHO ARE WE LOOKING FOR? •A Bachelor’s Degree in a related area such as Computer Science, Information Security and Risk Management •Minimum 3 years of experience in a similar or related position •Understanding of the various security concepts such as policy, standards, cyber governance, risk, controls, access management, etc. •Understanding of IT Security controls including firewall, networking, SIEM, EDR, CASB, IPS, WAF, UBA and GRC products •Working experience on cloud-based technology environments such as AWS and Azure •Understanding of the business impact of security tools, security operations centre, technologies, and policies •Understanding of IT technology to coordinate a variety of cybersecurity and risk management activities related to IT to ensure the achievement of business outcomes where the business process is dependent on technology •Demonstrable experience in Risk Management, Compliance Management or Auditing activities •Providing industry-leading practices in cyber security and regulatory compliance, including knowledge of common industry frameworks such as ISO 27001, NIST CSF, and PCI DSS •Able to work independently and negotiate and influence the alignment to security controls and requirements •Experience with vendor management •Strong collaboration and communication skills. Must be able to connect with all levels in the organization WHAT WE OFFER? •Private medical and dental care, life insurance •Lunch card (Sodexo) •Remote work opportunity and flexible working arrangements •Employee pension plan •Multisport program •Cafeteria program •Wide range of training, optional language classes, further education and professional qualification support possibility •Free bike and car parking for all employees HOW CAN YOU MAKE HISTORY WITH US? Be an SME in Security Governance & Compliance domain passionate about security engineering to protect the company brand, shareholder value, information assets, and help ensure regulatory compliance. •Assist in high priority projects from start to finish that strengthens the firm’s cybersecurity posture by identifying and structuring problems together with proposed solutions •Collaborate closely with the InfoSec Architecture community to ensure that security principles are optimally and efficiently embedded in new Technology Engineering solutions/tools •Promote the development and implementation of policies and standards by defining program scope, roles and responsibilities and relevant controls •Prepare BI reports showcasing the governance and compliance over the Technology and Engineering space •Coordinate with counterparts and colleagues in other regional locations and teams (e.g., Legal, InfoSec, Privacy, P&C) to ensure consistent responses and program adoption •Keep up to date with cybersecurity news to identify new risks and trends that may need to be addressed Please note that only online applications will be taken into consideration. Only selected candidates will be contacted.