Governance and Reporting Analyst

Join us, and elevate cybersecurity standards globally!

Krakow-based opportunity with the possibility to work 100% remotely!

As a Governance and Reporting Analyst, you will be working for our client, a leading global financial institution, focusing on maintaining and enhancing the standards of their cybersecurity practices. The project involves overseeing and reporting on Offensive Security activities, ensuring compliance with global standards, and contributing to the reduction of cyber risk. You will play a crucial role in driving continuous improvement in cybersecurity controls and governance, working closely with regional and global teams to ensure that critical security functions are properly covered and effectively managed.

Your main responsibilities:

• Provide observation and independent reporting on global Offensive Security activities
• Ensure Offensive Security activities comply with the client’s standards and regulations
• Plan and perform oversight reviews and control assessments, ensuring adherence to global standards
• Contribute to risk reduction by escalating and reporting potential security issues
• Maintain communication with global teams, providing top-down information on control changes
• Assist country leads in managing key control metrics and driving continuous improvement
• Act as a local expert on cybersecurity governance and reporting issues
• Support the development and enhancement of cybersecurity processes and procedures
• Represent the organization in specialist interest groups and forums, sharing relevant insights
• Monitor and report on the effectiveness of cybersecurity controls across regions

You’re ideal for this role if you have:

• Proven technical cybersecurity knowledge and risk management experience
• Familiarity with Offensive Security testing concepts such as penetration testing and red teaming
• Ability to operate effectively in matrix structures with multiple stakeholders
• Strong communication skills, with the ability to articulate technical information to diverse stakeholders
• Experience leading new security initiatives or projects
• Customer-focused mindset with a proactive and motivated attitude
• Ability to work in a multicultural environment with global teams
• Experience in managing and improving cybersecurity controls and governance
• Fluent English

It is a strong plus if you have:

• One or more industry-recognized cybersecurity certifications like CISSP, CISM, or CRISC
• Hands-on experience in security research or bug bounty programs
• Familiarity with ISO270001 standards and certification processes

#GETREADY  to meet with us!

We would like to meet you. If you are interested please apply and attach your CV in English or Polish, including a statement that you agree to our processing and storing of your personal data. You can always also apply by sending us an email at recruitment@itds.pl.

Internal number #5782