IT Security Assessment Specialist/Expert

IT Security Assessment Expert

We are Group IT Security; we are responsible for creating, implementing and monitoring a global security framework that supports safe and sound operation of the entire Home Credit Group – it is our responsibility to safeguard the data of millions of customers.
We ensure compliance with multiple regional and global regulatory requirements and monitor industry standards in order to maintain top quality Group IT Security standards and up-to-date technologies. Right now, we are looking for a colleague that will stand at the helm of global IT Security projects, coordinating and ensuring their successful implementation.

Typical workload

IT Security Assessment Expert should be able to independently work on assigned assessments and/or detected incidents and crisis, swiftly respond and escalate when necessary. Additionally, he or she helps to identify root cause, proposes and defines direct and long-term corrective measures, and takes ownership for actions of incident prevention. In case of crisis solving, specialist must be time and location flexible because crisis solving requires quick relocation anytime to any world location.
Finally, he or she should be able to manage remediation activities identified during internal/external audits across the Home Credit Group entities. The role also proposes the best assessment methodology and ensures that the level of security is in line with internal IT Security documentation and legal/regulatory requirements.
Specialist should be able to work independently, be communicative, and provide business with the explanation of findings, risks and recommendations in business language. He or she should be able to think on a global scale, have great communication skills to proactively inform and involve relevant internal stakeholders.

We want you if you have

  • At least 2 years’ experience in IT / information security, IT audit or IT risk management area
  • Good experience with the management of crisis situations, multicultural and multinational communication.
  • General knowledge of IT security assessment and security audit techniques.
  • General knowledge about IT and Information Security good practice (ITIL, ISO 27001, PCI-DSS etc.).
  • General knowledge about Microsoft, UNIX and middleware infrastructure administration, IT architecture, and network security.
  • Ability to quickly analyze situation and identify root cause, define corrective measures and take ownership to prevent incident if possible.
  • Proven track of 1-year experience in assessor role.
  • Experience with penetration testing (web & mobile applications, operating systems, services)
  • Fluent English both spoken and written.
  • Professional certification in the areas of information security, IT / security audit techniques is an advantage (CISA, CISASP, beneficial OSCP

Key Responsibilities

  • Investigates security breaches and other cybersecurity incidents.
  • Suggests IT security recommendations and designs appropriate IT security measures regarding identified findings from IT security incidents or assessments.
  • Assesses and enforces remediation activities in Home Credit Group.
  • Manages related IT security solutions / tools for IT security investigation.
  • Handles events such as identifying security issues, extensive troubleshooting, and coordinating resolution. The events can include hardware/software failures as well as security breaches and threats, or network connectivity issues.
  • Conducts IT security assessments and evaluations, discover vulnerabilities in information systems, performs penetration tests. Identifies and resolves potential security breaches and vulnerability issues.
  • Fully coordinates or supports activities to ensure compliance with internal and external IT security requirements.
  • Properly reports and tracks the remediation of IT security assessments findings.

What we offer, apart from competitive salary

  • Motivating yearly bonuses
  • Easily negotiable Flexi Office
  • 5 weeks of paid vacation
  • 5 days Personal time off
  • Meal allowances
  • Contribution to pension scheme
  • Possible foreign business trips
  • Notebook
  • Up to two 24″ monitors, ergonomic keyboard
  • Smartphone – iPhone or Samsung
  • Complimentary tea, subsidized coffee, free fruit on Mondays and Wednesdays
  • Relax room & games room
  • Technical trainings and certificates of your choice
  • Attendance at local & foreign conferences
  • Soft-skills and managerial trainings
  • Possible internal growth
  • Referral program bonuses
  • Loyalty bonus