Krakow, Poland


Information Technology



Job ID


MAKE HISTORY WITH US! At PMI, we’ve chosen to do something incredible. We’re totally transforming our business and building our future on smoke-free products with the power to deliver a smoke-free future With huge change, comes huge opportunity. So, wherever you join us, you’ll enjoy the freedom to dream up and deliver better, brighter solutions and you will have the space to move your career forward in many different areas/directions. IT at PMI PMI’s journey to a smoke-free future implies a shift from a tobacco manufacturer to a science and technology-based consumer facing organisation. Such a shift creates an abundance of unique and transformative IT projects to match all levels of skills and ambitions. You’ll feel like you’re working in a start-up – with the freedom to shape and define the future of digital, but with the support and scope of a vast global business. You’ll get a chance to work with cutting-edge technologies (e.g., Cloud, APIs, AI) as well as management practices (e.g., Agile, Design Thinking, Product Management). Our environment is fast-paced and highly collaborative. If you want the freedom to find new ways to connect with consumers, there’s no better place to progress your career. Digital at PMI is dynamic, diverse, and disruptive. Join us and become a part of a top talent team where you can bring new ideas to life in a global function that is a key driver of the success of our business. IT HUB Krakow With a team of over 300 and more than 20 nationalities, the IT HUB Krakow plays a critical role in creating a smoke-free future around the world. Become a part of a team of engineers, technicians, experts, solid IT freaks, researchers and game changers and create new IT work standards with us! Joining Information Security Running at the forefront of PMI's Digital Transformation, Information Security offers guidance, solutions and advisory all across PMI, supporting our secure journey towards a smoke-free future. Our scope ranges from security assessments, architecture, governance and risk advisory, through resilience, cyber threat intelligence and incident response, to supporting PMI Functions, Markets, and Platforms (e.g. Finance, People & Culture, Operations, Consumer or Product) and building an organizational security culture. JOIN US! WHO ARE WE LOOKING FOR? • 3-5 years of experience in a risk management, IT Governance, IT controls, or cyber security • Knowledge of IT risk management frameworks and methodologies (e.g., NIST, IRAM, ISO, COBIT) and familiarity with industry and regulatory requirements (e.g., SOX, GDPR, PCI-DSS). • Experience in supporting IT risk management in a modern IT environment (e.g., with cloud computing, big data, DevOps, IoT, next-generation firewalls, identity & access management and data leakage prevention solutions). • Professional certifications related to information security and risk management e.g., CRISC, CISSP, , CISM are desired. • Willingness to develop proficiency in information technology risk management Excellent written and verbal communication skills in English High degree of initiative, dependability, and ability to work with little supervision Team player with ability to build pro-active, co-operative working relationships with customers, peers and key stakeholders based on respect and teamwork WHAT WE OFFER YOU? • A wide range of training programs, optional language classes, further education, and professional qualification support possibility • Private medical, dental care and life insurance • Lunch card (Sodexo) • Hybrid work opportunity and flexible working arrangements • Employee pension plan • MyBenefit Cafeteria and multisport program • Free bike and car parking for all employees HOW CAN YOU MAKE HISTORY WITH US? • Providing expert guidance to IT and Information Security colleagues on the identification, analysis, evaluation and treatment of information security risks. • Managing the global information security risk register and reporting to IT management and other interested stakeholders. • Driving the adoption of a leading Information Security Risk Management framework in PMI and contribute to the continuous improvement of the risk management practice. • Supporting the development and implementation of the global information security risk management, IT Policies and IT Controls. • Conducting information security risk management trainings and awareness campaigns. • Partnering with other Information Security, Risk and Control teams to continuously improve the overall information security risk exposure and achieve higher levels of information security maturity. Please note that only online applications will be taken into consideration. Only selected candidates will be contacted.