Senior InfoSec Analyst – IT Corporate

Be a part of a revolutionary change At PMI, we’ve chosen to do something incredible. We’re totally transforming our business and building our future on smoke-free products with the power to deliver a smoke-free future. With huge change, comes huge opportunity. So, wherever you join us, you’ll enjoy the freedom to dream up and deliver better, brighter solutions and the space to move your career forward in endlessly different directions. PMI’s journey to a smoke-free future is fuelled by technology. The total transformation we’re going through requires enabling business with modern technology through speedy, agile, and effective approaches. We have unique projects here to match all levels of skills and ambitions – from pace-setting global pilot projects to vital country-level updates. Whether you want to pursue a personal passion or build an international career, there’s space here to develop in any number of directions. To join us in IT InfoSec you’ll need to be driven and equally happy whether you’re taking the strategic view or diving deep into processes and technologies. We'll make sure you're set up to succeed whatever your project is, our culture is agile and collaborative, and we genuinely believe our people are some of the best you’ll ever work with. YOUR DAY-TO-DAY WORK: As a member of our team, you will join the InfoSec 2nd LoD (Line of Defense) and work with us assuring cyber security posture, through the planning and execution of concrete assessments or corrective CRP (Cyber Risk Program) initiatives on our Corporate portfolio of business solutions (Finance, PnC, Law, Compliance, External Affairs) covering a wide array of technologies and deployment models from pure SaaS and private clouds to on-prem stacks: • Own the outputs of our yearly CRP Continuous Assessment process and govern the execution of corrective actions by our 1st LoD. This includes planning, getting commitment from the respective solution teams / product owners and measuring and reporting progress. Perform closure verifications when required. • Assist the 1st LoD teams on fixing and control execution and self-assessment pace and quality. • Translate control gaps into properly articulated and assessed Risks and monitor the corresponding Risk cycles (identification, registration, mitigation, acceptance, and closure verification) • Assist and support our incident response teams during and after incidents to close action plans and drive continuous improvement. • Provide inputs to other team members on the scoping of our yearly 2nd LoD ISA (InfoSec Assessments) and the yearly Cyber Maturity Assessments. • Coordinate with global market InfoSec teams any InfoSec activities that share common global / market scopes. • Create a network of stakeholders in both the IT and Business teams under the Corporate scope and maintain ongoing close relation to understand new risk areas or 2nd LoD operational insights. WHO WE’RE LOOKING FOR: • 2-5 years experience on cyber tests, assessments, or audits, in one or more core technologies and policy frameworks. Preferably previous full stack developer or engineer. • Good command of English spoken and written • Desire to share knowledge, build trust, and develop growth-mindset within a global multicultural team • Strong verbal and written communication and interpersonal skills are required to detail and communicate findings, raise critical incidents, and interact with InfoSec or IT teams. • Experience in: Risk Management models, DevSecOps, security engineering, incident response, TPCRM, Resiliency and Continuity. • Experience working in the in a global organization a plus. • Having or having had hands-on experience in a InfoSec role in one or more of the following tech stacks: SAP, Salesforce, Web stacks, AWS, Azure. Experience is more important than certifications. Desirable certifications include, but are not limited to: • Security + • CEH, CISSP, CCNA (Security) or equivalent Certifications. • GCIH, GCIA, GCFE, GREM, GCFA, GSEC. WHAT YOU CAN EXPECT FROM THE COMPANY? Our success depends on the men and women who come to work every single day with a sense of purpose and an appetite for progress. Join PMI and you too can: • Seize the freedom to define your future and ours. We’ll empower you to take risks, experiment, and explore; • Be part of an inclusive, diverse culture, where everyone’s contribution is respected; collaborate with some of the world’s best people and feel like you belong; • Pursue your ambitions and develop your skills with a global business – our staggering size and scale provide endless opportunities to progress; • Take pride in delivering our promise to society: to deliver a smoke-free future. WHAT WE OFFER YOU? • Private health insurance for you and your household; • Life Insurance; • Employee pension plan; • Lunch card (Ticket); • 26 vacations days; • Wide range of trainings.