Apply now »
At Bayer we’re visionaries, driven to solve the world’s toughest challenges and striving for a world where ,Health for all, Hunger for none’ is no longer a dream, but a real possibility. We’re doing it with energy, curiosity and sheer dedication, always learning from unique perspectives of those around us, expanding our thinking, growing our capabilities and redefining ‘impossible’. There are so many reasons to join us. If you’re hungry to build a varied and meaningful career in a community of brilliant and diverse minds to make a real difference, there’s only one choice.  


Principal IT Security Consultant 


Why Bayer?

“Health for all and Hunger for none” is our mission at Bayer. Every day, we are privileged to  work on purposeful cutting-edge projects to bring our mission to life. Join us at Bayer to have a  career that you can put your passion into practice and make an impact using Science for a better  life.


For our newly established IT Hub, we are looking for:


Principal IT Security Consultant


Main Purpose:


The Candidate is expected to have a thorough understanding of complex IT systems and stay up to date with the latest security standards, systems, and authentication protocols, as well as best practice for security products. Maintain overall industry knowledge on latest trends, technology, etc., and serve as subject matter expert for Bayer; The position holder has leadership ability to back security and architecture decisions with research and the why, and articulate several options, with pros and cons for each, and a recommendation;

They must have the ability to identify security gaps, develop controls complying to security standards and regulatory requirements of data (e.g., Data Privacy). The position holder utilizes Cyber Security and Risk management Strategy and processes to ensure, and at times lead, risk assessments and management of digital risks as per Bayer policies and regulations. The successful candidate will possess a deep technical foundation with a creative and collaborative mindset to help the team achieve key objectives of the Risk Assessment team.



Key working Relations:


  • Global IT Digital Transformation
  • Global Business Divisional representatives and Enabling Functions
  • Global Internal Audit and Risk Management
  • Global EP&I
  • Global Law Patent and Compliance
  • Cyber Security and Risk Management


Scope (global, regional or local):



The span of scope is global which requires the incumbent to work with Global Bayer Stakeholders located in Germany USA.



Key Tasks & Responsibilities:


  • The candidate designs, builds and oversees the implementation of the cyber security controls for a complex digital Ecosystems and platforms.
  • Manage and support enterprise security maturity programs, including preparing budgets, overseeing expenses, and allocating personnel resources.
  • Maintain security by monitoring and ensuring compliance to standards, policies, and procedures.
  • Maintain overall industry knowledge on latest trends, technology, etc., and serve as subject matter expert for Bayer.
  • Demonstrate leadership ability to back security and architecture decisions with research and the why, and articulate several options, with pros and cons for each, and a recommendation.
  • Partner with CSRM stakeholders, Information Technology (IT) and business to develop security strategies and Risk Assessment strategies for Bayer globally in support of business goals.
  • Provide support and recommendations for the selection, security review, and lifecycle management of third-party services, products, and solutions; Provide IT Security consulting services to stakeholders, IT, Business Teams, and projects.
  • Drive continuous improvement for adequacy and effectiveness of measures by conducting quality check of application risk landscape, in addition bring transparency of risks to the changing Bayer digital landscape.
  • Assist in the development of security policies, standards, patterns, and guidance.
  • Update job knowledge constantly by tracking and understanding emerging security technologies, solutions, practices, and standards, participating in educational opportunities, reading professional publications.
  • Participate in professional organizations.



Qualifications & Competencies (education, skills, experience):


  • Master’s degree with 10 years of relevant Information Technology/Security experience or Bachelor’s degree with 12 years equivalent combination of education and experience;
  • Strong foundational knowledge of all domains of security;
  • Experience with enterprise IT design concepts and strategies;
  • Broad-based working knowledge of cloud platforms, identity federation, networking, application, database, server/serverless, and application security;
  • Demonstrated knowledge of managed services and security best practices;
  • Strong working knowledge of encryption technologies and security perimeter controls;
  • Experience in IT Security contract reviews in addition to collaborating with vendors, legal, procurement and business colleagues on redlines and risk exposure.
  • Certifications in – CISSP, CCSP, ISSAP, ISSEP, ISSMP, CISM, CISA
  • Excellent communication and be able to operate effectively with minimum supervision. Demonstrated ability to engage with senior leaders to define requirements and implement technology solutions that add value and reduce risk; Demonstrated knowledge and experience with managing complex projects;
  • Process oriented and strong documentation skills;
  • Strong communication and interpersonal skills;
  • Strong written skills and presentation skills



In the exchange we will offer you:


  • A flexible hybrid work model 
  • Career development, 360° Feedback & Mentoring programme
  • Wide access to professional development tools, trainings, & conferences
  • Competitive salary, annual bonus & top performers awards
  • VIP Medical Care Package (including Dental & Mental health) 
  • Pension plan
  • Holiday allowance (“Wczasy pod gruszą”)
  • Life & Travel Insurance 
  • Co-financed sport card with unlimited usage 
  • Meals Subsidy in Office 
  • Home Office Setup & Maintenance allowance



Our inclusive culture at Bayer:


Bayer is an equal opportunity employer. We care about inclusion in terms of gender, age, race, skin color, nationality, religion, marital status, sexual orientation, background, physical or mental disabilities and on every other grounds. Applying for our position, we assure you that we will assess your application solely on the basis of your competencies.



Division: Enabling Functions        

Poland : Mazowieckie : Warszawa 

Reference Code:





Job Segment: Compliance, Cyber Security, Risk Management, Internal Audit, Consulting, Legal, Security, Finance, Contract

Apply now »