Chief Information Security Officer
Cracow / Wrocław
Administration – Information Security /
FTE /
Hybrid
About intive
intive is a global Tech company that combines deep industry expertise, user-centric design and world-class software engineering. With a diverse team of +3,000 people and its human-centric approach, intive creates digital products that empower users, deliver business value and make a societal impact.
intive has over 20 years of experience innovating with customers across industries, including Technology, Media and Communications, Retail, Automotive, FinTech, and Telecommunications. By focusing on creating sustainable impact through digital products, intive has won the trust of leading brands such as Audi, BASF, BMW, Deichmann, Discovery, Facebook, Tandem, Paramount and Vorwerk.
The Chief Information Security Officer is responsible for establishing and maintaining the enterprise vision, strategy, architecture, and a long-term roadmap that ensures that intive’s information assets are adequately protected. A key element of this role is communicating security at a strategic level to executive management, senior management and evangelizing security across the business to drive adoption of security best practices.
What you will be doing:
· Develop a strategic, long-term information security and IT risk management strategy and program and supervise its implementation to ensure that intive’s information assets are adequately protected.
· Development, planning and implementation of a long-term security strategy for the company.
· Budget planning and calculation.
· Planning and implementation of awareness measures to maintain and expand company-wide security perception.
· Work with senior leaders across the business to assess and communicate acceptable levels of risk.
· Identify, evaluate and report on information security risks, practices and projects to the Executive Committee and the Board of Directors, and provide subject matter expertise on security standards and best practices (e.g. TISAX, ISO 27001, PCI, etc.).
· Develop the Board’s understanding of security beyond a ‘compliance-only’ view.
· Lead the development of up-to-date information security policies, procedures, standards and guidelines, and oversee their approval, dissemination, and maintenance in line with ISO27001 and TISAX.
· Ensure that the security management program follows applicable laws, regulations, and contractual requirements.
· Act as the champion for the enterprise information security program and foster a security-aware culture.
· Oversee the evaluation, selection and implementation of information security solutions that are innovative, cost-effective, and minimally disruptive.
· Partner with enterprise architects, infrastructure, and applications teams to ensure that technologies are developed and maintained according to security policies and guidelines.
· Manage regular intrusion detection and vulnerability reporting, internal and external IT audit groups reviews, and the coordination of all required fixes.
· Develop business metrics to measure the effectiveness of the security management program and increase the maturity of the program over time.
· Monitor the industry and external environment for emerging threats and advise relevant stakeholders on appropriate courses of action.
· Liaise with law enforcement and other advisory bodies as necessary to ensure that the organization maintains a strong security posture.
· Oversee incident response planning and the investigation of security breaches, and assist with any associated disciplinary, public relations and legal matters.
You're a good match if you have:
· Degree in computer science, business informatics, business administration or a technology-related field
· Professional security management certifications (CISSP, CISM, CISA, Lead Auditor)
· Knowledge of common information security management frameworks, such as ISO/IEC 27001 or TISAX
· Hands on experience with the implementation and certifications of information security management frameworks
· Excellent written and verbal communication skills and high level of personal integrity
· Innovative thinking and leadership with an ability to lead and motivate cross-functional, interdisciplinary teams
· Experience with contract and vendor negotiations and management including managed services
· Ability to speak fluently in English and German
· Supervisory and incident management skills
Why intive?
We foster an environment where innovative ideas and excellence can thrive - both on-site and remotely. Our learning culture rewards curiosity and empowers our team members to learn, grow, and take charge of their careers.
· Remote Work, Flexibility & Balance – Hybrid work. You are welcome but not required at our offices. We have flexible benefits (pyszne.pl vouchers, mobile phone, data subscription by modem or cash benefit). You choose your contract type (UoP or B2B) and equipment (MacBook or Dell).
· Performance management - Regular partnership meetings between each employee and a manager. You can create a career path based on your goals. We provide training, mentoring, and support to help you along the way.
· Training & Mentorship - Learning and development are an important part of our corporate culture. You will have access to learning activities (courses, conferences, language classes, Udemy licences, Team Lead training program) tailored to your individual performance and development needs and goals.
· Tech chapters – You become part of a community of colleagues who share your interests. There is room for internal exchange and access to the latest technologies.
· Culture & Connection - We foster connections within our teams, as well as across areas of responsibility and hierarchical levels. We make sure everyone is appreciated and feels connected to our mission and each other. We arrange bonding events for our employees and their children.
· Benefits offer - available for you and your family members: Medicover + More Smile Package, Multisport, Group Insurance, Sport Subsidy.
#LI-AC2
