Control Design and Oversight Analyst

Join us, and shape the future of secure digital environments!

Krakow-based opportunity with the possibility to work 100% remotely!

As a Cybersecurity Control Design and Oversight Analyst, you will be working for our client, a global leader in financial services with a focus on enhancing their cybersecurity control environment. This role is part of a global initiative to maintain and develop cybersecurity controls across multiple regions and legal entities. You will be responsible for ensuring that the controls align with industry standards, regulatory requirements, and the organization’s risk management framework. This position offers the flexibility of remote work and the opportunity to collaborate with cybersecurity teams and stakeholders across the globe.

Your main responsibilities:

• Engaging with stakeholders to ensure cybersecurity controls are designed and operated according to the organization’s requirements and industry best practices
• Working with teams to define and maintain control measurements in line with the organization’s Key Control Indicator (KCI) Design Framework
• Ensuring compliance with legal and regulatory requirements and providing insights through control measurements for management reports
• Collaborating with control owners and second-line defense teams to enhance the effectiveness of cybersecurity controls
• Supporting the continuous improvement of the cybersecurity control environment by identifying gaps and proposing enhancements
• Preparing and presenting reports on control performance and effectiveness to senior management
• Assisting in the development of new, data-driven control environments to better understand risk exposure
• Facilitating knowledge sharing and training sessions within the cybersecurity function and beyond
• Responding to and managing cybersecurity incidents as needed
• Assisting in the implementation of control frameworks and ensuring they are aligned with global standards

You’re ideal for this role if you have:

• Experience with risk and control frameworks, including expertise in control management and implementation
• Understanding of inherent and residual risk concepts
• Ability to translate complex IT concepts into business-friendly language
• Experience with cybersecurity risks and controls
• Strong technical background with knowledge of information technology and metrics for managing risks and controls
• Proficient writing skills and experience using MS Office and MS Teams
• Experience managing stakeholders in an international environment, particularly in cybersecurity leadership
• A team-oriented mentality with the ability to work independently and deliver high-quality results
• Experience in fast-paced, complex corporate environments with large-scale IT or security issues
• Strong interpersonal skills, including influential communication, active listening, and credibility

It is a strong plus if you have:

• ​​​Familiarity with industry best practices and frameworks in information technology
• Experience with Governance, Risk, and Compliance (GRC) tools
• Industry certifications in risk, technology, or security

#GETREADY  to meet with us!

We would like to meet you. If you are interested please apply and attach your CV in English or Polish, including a statement that you agree to our processing and storing of your personal data. You can always also apply by sending us an email at recruitment@itds.pl.

Internal number #5702