Security Controls Consultant

Join us, and make critical decisions that safeguard organizational integrity!

Krakow-based opportunity with the possibility to work 80% remote

As a Security Controls Consultant, you will be working for our client, a leading financial institution. In this role, you’ll ensure compliance with robust cybersecurity standards, conduct in-depth security assessments, and deliver actionable insights to strengthen the organization’s overall security posture. You’ll collaborate closely with internal stakeholders to implement strategic remediation plans while maintaining high-quality reporting and documentation. This is an exciting opportunity to contribute to the development of strong cybersecurity measures in a dynamic and regulated environment.

Your main responsibilities:

• Conducting comprehensive security assessments of applications against established security controls
• Developing detailed reports on current security posture and providing actionable recommendations
• Defining, implementing, and maintaining operational control instances to align with cybersecurity goals
• Collaborating with stakeholders to develop and execute effective remediation plans
• Providing clear and concise reports to senior management on the status, coverage, and effectiveness of cybersecurity controls
• Ensuring timely and accurate delivery of risk and control management data
• Translating complex IT and security concepts into business-friendly language
• Reviewing and updating cybersecurity policies, procedures, and standards to ensure compliance
• Identifying and addressing gaps in operational and regulatory security controls
• Supporting the organization in meeting EU cybersecurity regulations

You’re ideal for this role if you have:

• A strong background in risk and controls management
• In-depth knowledge of cybersecurity concepts, requirements, and operations
• Experience with technology risks and controls
• Technical writing skills and the ability to articulate complex control requirements effectively
• Excellent verbal and written communication skills for targeted stakeholder engagement
• Proven ability to deliver high-quality outcomes on time
• Self-motivation, proactive mindset, and a strong work ethic
• Strong organizational and problem-solving skills
• A flexible and adaptable approach to shifting priorities
• An understanding of metrics and measures for managing risks and controls (e.g., KCIs, KRIs, KPIs)

It is a strong plus if you have:

• Experience working in a highly regulated environment
• Familiarity with EU region cybersecurity regulations
• Prior experience in the financial services industry

#GETREADY  to meet with us!

We would like to meet you. If you are interested please apply and attach your CV in English or Polish, including a statement that you agree to our processing and storing of your personal data. You can always also apply by sending us an email at recruitment@itds.pl.

Internal number #6397