Cyber Security Risk Assessor (Cybersecurity)

TL;DR

Senior Cyber Security Risk Assessor (Cybersecurity): Performing high-quality technical risk assessments, root cause analysis, and risk investigations on IT and Cloud architectures, infrastructures, platforms, applications, technology stacks, and business projects with an accent on current cyber threats landscape and emerging risks. Focus on proactively and constructively challenging the status quo, identifying Cyber and Information Security operational risks, and proposing realistic remediation or improvement solutions.

Location: Onsite in Kraków, Poland

Company

hirify.global is a leading and truly global wealth manager and the leading universal bank in Switzerland, present in more than 50 markets around the globe.

What you will do

• Perform high-quality technical risk assessments and investigations on IT and Cloud architectures and applications.
• Perform deep dives and thematic reviews into Cyber and Information Security capabilities and services.
• Proactively challenge the status quo, identifying operational risks and proposing remediation solutions.
• Act as a trusted technical partner in Cyber and Information Security for senior stakeholders.
• Streamline and standardize the technical risk assessment process.
• Learn data analytics techniques and integrate objective data analytics insights into risk assessments.

Requirements

• Shirify.globaltantial experience in technical risk management in Cyber and Information Security.
• Strong and broad knowledge in network, database, cloud, application, and infrastructure security.
• Strong technical expertise in Data Protection, Identity and Access Management, or Cyber Security.
• Strong knowledge of Information and Cyber Security risk management and control frameworks (e.g., ISO27001, NIST CSF) and operational threat management frameworks (e.g., MITRE ATT&CK).
• Persuasive oral and effective written presentation and reporting skills.
• Degree in Computer Science, Computer Engineering, Electrical Engineering, Information Security or related discipline.

Nice to have

• Experience in offensive security, secure application development/testing, or operational security role.
• Industry recognized certifications like CISSP, CCSP, CISM, CISA, OSCP, SANS.
• Understanding of the financial industry and control/business enabling functions.

Culture & Benefits

• Join a global team working across multiple locations.
• Collaborative environment where people with diverse skills and backgrounds drive success.
• Dedicated to putting people first with new challenges and a supportive team.
• Opportunities to grow and flexible working options when possible.
• Leverages artificial intelligence (AI) to work smarter and more efficiently.