(Senior) InfoSec Engineer Project Advisory

MAKE HISTORY WITH US! At PMI, we’ve chosen to do something incredible. We’re totally transforming our business and building our future on smoke-free products with the power to deliver a smoke-free future. With huge change, comes huge opportunity. So, wherever you join us, you’ll enjoy the freedom to dream up and deliver better, brighter solutions and you will have the space to move your career forward in many different areas/directions. IT at PMI PMI’s journey to a smoke-free future implies a shift from a tobacco manufacturer to a science and technology-based consumer facing organisation. Such a shift creates an abundance of unique and transformative IT projects to match all levels of skills and ambitions. You’ll feel like you’re working in a start-up – with the freedom to shape and define the future of digital, but with the support and scope of a vast global business. You’ll get a chance to work with cutting-edge technologies (e.g., Cloud, APIs, AI) as well as management practices (e.g., Agile, Design Thinking, Product Management). Our environment is fast-paced and highly collaborative. If you want the freedom to find new ways to connect with consumers, there’s no better place to progress your career. Digital at PMI is dynamic and diverse. Join us and become a part of a top talent team where you can bring new insights to life in a global function that is a key driver of the success of our business. IT HUB Krakow With a team of over 300 and more than 20 nationalities, the IT HUB Krakow plays a critical role in creating a smoke-free future around the world. Become a part of a team of engineers, technicians, experts, solid IT freaks, researchers and game changers and create new IT work standards with us! Joining Information Security Running at the forefront of PMI's Digital Transformation, Information Security offers guidance, solutions and advisory all across PMI, supporting our secure journey towards a smoke-free future. Our scope ranges from security assessments, architecture, governance and risk advisory, through resilience, cyber threat intelligence and incident response, to supporting PMI Functions, Markets, and Platforms (e.g. Finance, People & Culture, Operations, Consumer or Product) and building an organizational security culture. JOIN US! WHO ARE WE LOOKING FOR? • Minimum 4 years of experience in cybersecurity, preferably focused on application security or IT audit • Industry-recognized information security certifications, e.g. CISA, CISSP, CISM • Proven track record in conducting technical security assessments, vulnerability assessments and configuration reviews • Demonstrated experience in effectively translating and communicating security and technology risk implications across technical and non-technical stakeholders • Demonstrated experience in understanding and articulating the impact of vulnerabilities on existing and future designs, and how easy or difficult it will be to exploit these vulnerabilities • Strong understanding of modern application architectures including microservices, containers, APIs, serverless technologies and cloud environment (AWS, Azure) • Knowledge of basic identity and access management concepts (e.g. single-sign on, identity federation) and standards (e.g. SAML, OAuth 2.0, OpenID) WHAT WE OFFER YOU • Wide range of trainings, optional language classes, further education and professional qualification support possibility • Private medical and dental care, life insurance • Lunch card (Sodexo), Multisport & Cafeteria program • Hybrid model of work and flexible working arrangements • Employee pension plan • Free bike and car parking for all employees HOW CAN YOU MAKE HISTORY WITH US? • Be a trusted partner for IT teams in ensuring that systems used across the Company are designed, implemented and operated in a secure manner • Support IT teams in understanding applicable internal and external information security requirements and effectively embedding them in the deployment of new systems or evolutions of existing systems • Advise on technologies, techniques and configurations which should be in place to ensure an adequate level of system security and data protection in line with those requirements • Identify cybersecurity gaps in systems using a wide variety of methods, including architecture reviews, threat modeling, configuration assessments, and various forms of security testing • Describe identified issues in the form of reports and ensure that relevant partners understand the risk that those vulnerabilities pose to the Company • Advise IT teams on how to replicate identified issues and remediate them in the most effective and cost-efficient way • Keep up to date with the constantly evolving cyber threat landscape and the latest developments in application security and IT risk management What’s in it for you? There are many IT Organizations out there, so why should you join ours? We believe PMI IT’s true strength is fuelled by our people, and that our success depends on them coming to work every single day with a sense of purpose and an appetite for progress. We are people first organisation committed to providing you with first-class employee journey. Here’s a glimpse of what’s in it for you upon joining us: • Work-life balance: Wellbeing comes first. We offer a fantastic office environment and Smart working options to ensure you have the best work-life balance possible • Learning & Development: Your growth is a priority. Our robust and varied learning & development ecosystem will help you strengthen your technical skills and enhance your soft skills and business acumen. The capabilities you will acquire with us will support your life-time employability within IT, PMI, and beyond • Inclusion & Diversity: Our differences - much more than our similarities - generate the innovation we are looking for. We aspire to build a diverse and inclusive organization to access the breadth and depth of thinking and sensitivity necessary to thrive Every single IT colleague is part of our Transformation journey. Join us and pursue your ambitions – our staggering size and scale provides endless opportunities to progress. If this offer resonates with you, we look forward to receiving your application and getting to know you. Please note that only on-line applications will be taken into consideration. Only selected candidates will be contacted. #LI-Hybrid