For Digital Hub Warsaw, we are looking for:

IT Security Risk Consultant

Key Tasks & Responsibilities:

• Partner with CSRM stakeholders, Information Technology (IT) and business to develop security strategies and Risk Assessment strategies for Bayer globally in support of business goals.

• Assist in the development of security policies, standards, patterns, and guidance.

• Update job knowledge constantly by tracking and understanding emerging security technologies, solutions, practices, and standards, participating in educational opportunities, reading professional publications.

• Manage IT Security, legal and regulatory risks by performing IT Security Risk Assessments and recommending the appropriate security controls to address the gaps that are not in line with Bayer Policies and regulatory requirements.

• Provide support and recommendations for the selection, security review, and lifecycle management of third-party services, products, and solutions; Provide IT Security consulting services to stakeholders, IT, Business Teams, and projects.

• Contribute to translation of risks resulting from usage of information technology which are internally and externally regulated into the digital environment. .

• Perform cloud security assessments and recommends measures over a large scale multi cloud environment.

• Understanding of emerging technologies in IT such as a Cloud Platform and Mobile Bring Your Own Device as well as the associated security risks.

• Complete department responsibilities within the evaluation of vendor proposals, conduct process analyses, review information security architectures, and recommend mitigation measures to exceptions not meeting Company policies and industry standards.

Qualifications & Competencies (education, skills, experience):

• Bachelor’s degree with 5 years of relevant Information Technology/Security experience or 7 years of relevant Information Technology/Security experience;

• Strong foundational knowledge of all domains of security;

• Demonstrated experience in managing critical situations as well as analytical, conceptual, and technical exposure and understanding of Amazon Web Services, Microsoft Azure and Google Cloud Platform

• Possess clear understanding of security protocols and standards and have experience with software and security architectures.

• Knowledge of cloud networking architecture, cloud operations, security, automation, and orchestration.

•  Experience with reviewing network, firewall and endpoint architectures, configurations, policies, procedures, and technical capabilities as well as physical devices such as servers, IoT and drones.

• Solid understanding of NIST (National Institute of Standards and Technology) and ISO (International Organization for Standardization) standards.

• Strong collaboration skills and ability to work in both cross-functional and global teams.

• Working knowledge and experience with GRC tools like RSA Archer • Demonstrated knowledge and experience with managing complex projects;

• Process oriented and strong documentation, communication and interpersonal skills;

• Strong written and presentation skills;

What do We offer:

• A flexible, remote-hybrid work model

• Great workplace in a new modern office in Warsaw

• Career development, 360° Feedback & Mentoring programme

• Wide access to professional development tools, trainings, & conferences

• Company Bonus & Reward Structure

• VIP Medical Care Package (including Dental & Mental health)

• Holiday allowance (“Wczasy pod gruszą”)

• Life & Travel Insurance

• Pension plan

• Co-financed sport card - FitProfit

• Meals Subsidy in Office

• Additional days off

• Budget for Home Office Setup & Maintenance

• Dedicated working Zone with state-of-the art Lab available only for Cyber Security Team

• Access to Company Game Room equipped with table tennis, soccer table, Sony PlayStation 5 and Xbox Series X consoles setup with premium game passes, and massage chairs

• Tailored-made support in relocation to Warsaw when needed

• Please send your CV in English

You feel you do not meet all criteria we are looking for? That doesn’t mean you aren’t the right fit for the role. Apply with confidence, we value potential over perfection

WORK LOCATION: WARSAW AL.JEROZOLIMSKIE 158