Information Security Compliance Analyst

7 miesięcy temu


Warsaw, Polska DLA Piper Pełny etat
The role

The Information Security team are responsible for security activities across the DLA Piper International firm.

The Information Security and Compliance Analyst will ensure security controls are operating effectively and in accordance with relevant regulatory and industry best practices. 

They will identify, report and act upon audit and compliance risks, directing and co-ordinating the response with other groups to mitigate any threats.

MAIN DUTIES AND RESPONSIBILITIES
The Information Security Team is responsible for ensuring compliance with information security controls, management policies and procedures that are a core component of the firm’s ISO 27001 certification.

The key areas of responsibility are (but not limited to):

  • Ensure the continual effectiveness of ISO 27001 Information Security Management System (ISMS) and adherence to the standard
  • Maintaining ISO 27001 certification
  • Perform regular compliance testing of the firms Cyber Essentials Plus certification
  • Respond to client audits and act as subject matter expert for client questionnaires
  • Ensure policies and processes are in line with regulatory and internal standards
  • Conduct assessments to evaluate compliance with the firms security policies, procedures and controls
  • Agree risk and audit remediation action plans with appropriate cross functional owners ensuring mitigation is completed on time
  • Escalate high & critical risks or risk trends to appropriate leadership teams
  • Manage the internal assurance audit schedule 
  • Provide Audit and Compliance metrics
  • Embed compliance culture and risk awareness across the firm
  • terms and Master Services Agreements
  • This role will partner with key functions such as architecture and design authorities to identify opportunities for new and enhanced security controls
  • Stay up to date with the latest information security trends as relevant to the role and risk environment

ABOUT YOU

  • Experience of operating, monitoring and implementing security policies, standards and controls
  • Understanding of information security controls and technology
  • Experience of working with and auditing ISO 27000 ISMS
  • Experience of Cyber Essentials Plus
  • Managing external audit activity and supporting internal audits
  • Understanding of risk management

The ideal candidate should have excellent soft skills and understand how to communicate within a large organisation and with staff within the business. Experience in the security industry is a must and a good breadth of security knowledge is essential.

The ideal candidate may hold security certifications such as CISA, CRISC, ISO27001 Lead Auditor with other security certifications being beneficial.  A good understanding of IT systems and security technologies is required.

The following characteristics are essential:

  • Strategic Perspective – Keeping organisational objectives and strategies in mind, and ensuring courses of action are aligned with the strategic context
  • Influence, Persuasion and Personal Impact – Conveying a level of confidence and professionalism when engaging with stakeholders, influencing positively and persuading others to take a specific course of action when not in a position of authority
  • Interacting with People – Establishing relationships, contributing to an open culture and maintaining contacts with people from a variety of backgrounds and disciplines. Effective, approachable and sensitive communicator in different communities and cultures. Ability to adapt style and approach to meet the needs of different audiences
  • Flexibility – Taking account of new information or changed circumstances and/or business requirements and modifying response to a problem or situation accordingly
  • Commercial Orientation – Understanding commercial considerations and ensuring alignment with them when making decisions or recommending actions
  • Initiative – Being proactive, anticipating opportunities for systems, service or product improvement or development and taking appropriate action(s)
  • Persistence – Meeting targets, acting and/or fulfilling agreements even when adverse circumstances prevail
  • Organisational Awareness – Understanding the hierarchy and culture of own, customer, supplier and partner organisations and being able to identify the decision makers and influencers

Key Relationships:

  • Client Relationship Managers and Clients
  • IT and Security architects, Project Managers, Engineers and Analysts
  • IT Managers
  • Broader Risk and Compliance functions
  • Data Privacy

ABOUT US
DLA Piper is a global law firm with lawyers and business service professionals located in more than 40 countries throughout the Americas, Europe, the Middle East, Africa and Asia Pacific. Our global reach ensures that we can help businesses with their legal needs anywhere in the world. We strive to be the leading global business law firm by delivering quality, service excellence and value to our clients and offering practical and innovative legal solutions to help them succeed. Our clients range from multinational, Global 1000, and Fortune 500 enterprises to emerging companies developing industry-leading technologies, as well as government and public sector bodies.

OUR VALUES
In everything we do connected with our People, our Clients and our Communities, we live by these values:

  • Be Supportive – we are compassionate and inclusive, valuing diversity and acting thoughtfully
  • Be Collaborative – we are proactive, passionate team players investing in our relationships
  • Be Bold – we are fearless and inquisitive, challenging ourselves to think big and find creative new solutions
  • Be Exceptional – we are strategic and driven, exceeding standards and expectations

DIVERSITY AND INCLUSION
At DLA Piper, diversity and inclusion underpins how we live our values and everything we do. We believe that everyone has a voice, and that everyone’s voice counts. We know that the rich diversity across our firm makes us stronger, more innovative and creative, which helps us to better serve our clients and communities. We are committed to providing an inclusive working environment and culture across our global firm, where everyone can bring their authentic self to work.

Diversity of perspective, thought, background and culture combine to make us the leading global law firm; that’s why we actively seek to build balanced teams. We welcome the unique contribution that you will bring to our firm and actively encourage applications from all talented people – however your talent is packaged, whatever your background or circumstance and regardless of how you identify.

HYBRID WORKING
We recognise that people have responsibilities and interests outside of their career and that as a business, we all benefit from working flexibly. That’s why we are open to discussing with candidates the different ways in which we are able to support requests for agile working arrangements.

PRE-ENGAGEMENT SCREENING
In the event that we make an offer to you, and where local legislation permits and where relevant, we will conduct pre-engagement screening checks that may include but are not limited to your professional and academic qualifications, your eligibility to work in the relevant jurisdiction, any criminal records, your financial stability and work-related references.

4067 | Poland | WarsawApply
  • Information Security Analyst

    4 miesięcy temu


    Warsaw, Polska Media.Monks Pełny etat

    Job Brief This position is intended to be involved in the implementation and improvement of administrative and technical controls of the company's Information Security Management System. This person should understand the risk assessment process to detect new threats, contribute in the action plan development and promote the progress of control...


  • Warsaw, Polska Axiom Software Solutions Limited Pełny etat

    Job Description:B2B rolling contract roleJob Location: Warsaw, Poland OR Vienna, AustriaThe Security Assurance Analyst ensures the compliance of systems and processes with Trust Services criteria, focusing on information security, data privacy, and compliance. This role demands a solid background in auditing & assurance as well as significant experience in...


  • Warsaw, Polska IQVIA Pełny etat

    Location: Portugal or Poland This is a key role within the Global Information Security organization. The individual fulfilling this role will be a member of the Information Security Governance Risk and Compliance Program Delivery and Improvement team, tracking the delivery of all CISO programs and BAU activities through metrics and continuously looking...


  • Warsaw, Polska Sportradar Pełny etat

    Job DescriptionOVERVIEW: The Security Engineering squad is a group of security engineers with the clear mission to enable IT Security and Information Security processes by internally providing specialized services. The squad acts as an internal service provider supporting both security focused teams and other business units. As Subject Matter Experts...


  • Warsaw, Polska Chabre IT Services Sp. z.o.o Pełny etat

    Working as an Information Security Specialist, you will:Collaborate with the Security Operations Team (managed security service provider) to handle daily incident responses effectivelyDevelop and support security awareness programs to enhance knowledge and best practices across the organizationIdentify potential improvements in the security posture of...

  • Senior Security Risk Analyst

    2 miesięcy temu


    Warsaw, Polska Snowflake Pełny etat

    Build the future of the AI Data Cloud. Join the Snowflake team. We’re at the forefront of the data revolution, committed to building the world’s greatest data and applications platform. Our ‘get it done’ culture allows everyone at Snowflake to have an equal opportunity to innovate on new ideas, create work with a lasting impact, and excel in a...

  • Compliance Analyst

    4 miesięcy temu


    Warsaw, Polska Intermediate Capital Group Pełny etat

    Job Title: Compliance AnalystContract Type: PermanentLocation: WarsawWork Pattern: Hybrid (3 days a week from the office, 2 days wfh)Department: ComplianceWhat the Hiring Manager says….Summary of our opportunityThe Compliance team consists of 21 employees, situated across London, Warsaw, Luxembourg, Singapore and the US. As a small team supporting a unique...


  • Warsaw, Polska Sportradar Pełny etat

    Job DescriptionJoin Our Team as a Senior Security Engineer at Sportradar! Are you ready to elevate your career in one of the fastest-growing sectors in the digital sports environment? At Sportradar, we provide a platform for you to gain international recognition for your expertise while working alongside industry leaders. This is more than just a job –...


  • Warsaw, Polska Marqeta Pełny etat

    Marqeta is on a mission to change the way money moves. We’re one of the earliest enablers of embedded finance, a market opportunity sized up in the trillions. Our card issuing platform provides unprecedented flexibility and control for companies to issue cards, authorize transactions, and manage payment operations in real time. Marqeta is powering the...


  • Warsaw, Polska Bruker Pełny etat

    visão global Bruker is enabling scientists to make breakthrough discoveries and develop new applications that improve the quality of human life. Bruker’s high performance scientific instruments and high value analytical and diagnostic solutions enable scientists to explore life and materials at molecular, cellular, and microscopic levels. In...

  • Trade Compliance Analyst

    3 miesięcy temu


    Warsaw, Polska Dover Corporation Pełny etat

    Location: Readiness to work from our current location at 39 Farbiarska Street in Warsaw till the 2nd quarter of 2025, when we are opening our new facility at 105 Katowicka Avenue in Kajetany. Markem-Imaje (MI), a wholly owned subsidiary of Dover Corporation, connects products and protects brands through intelligent identification, traceability, and consumer...


  • Warsaw, Polska Goldman Sachs Pełny etat

    Financial Crimes Compliance  Financial Crime Compliance has primary responsibility for the execution of the firm’s enterprise-wide Anti-Money Laundering, anti-bribery, and government sanctions compliance programs and, among other things, performs enhanced due diligence and government sanctions screening, as well as surveillance and investigations...


  • Warsaw, Polska Tradevest GmbH Pełny etat

    Your roleAs an Information Security Officer (m/f/d) you will be responsible for the development and implementation of our information security strategy. You will ensure that our Group companies meet the highest security standards and protect our data and systems from potential threats.Your mission and responsibilitiesYou will be responsible for the...

  • ERP Security Analyst

    2 miesięcy temu


    Warsaw, Polska Stryker Poland Services sp. z o.o. Pełny etat

    Work Flexibility: Hybrid Join Stryker at a pivotal moment of transformation as we embark on an ambitious journey to increase our revenue from $20 billion to $30 billion by the end of 2029. This strategic project, which includes the creation of an IT hub, represents a once-in-a-decade opportunity to be part of an extraordinary and exciting professional...

  • Master Data Analyst

    2 tygodni temu


    Warsaw, Polska PL18 Alcon Polska Sp. z o.o. Company Pełny etat

    At Alcon, we are driven by the meaningful work we do to help people see brilliantly. We innovate boldly, champion progress, and act with speed as the global leader in eye care. Here, you’ll be recognized for your commitment and contributions and see your career like never before. Together, we go above and beyond to make an impact in the lives of our...

  • Cyber Security Analyst

    1 miesiąc temu


    Warsaw, Polska Biogen Pełny etat

    Job DescriptionAbout This Role:As a Cyber Security Analyst in the Security IT team, you will delve into the complex world of security data to uncover trends, patterns, and potential risks that inform our risk management and cyber defense strategies. Your analytical prowess will enable you to interpret incidents, vulnerabilities, and security assessments,...


  • Warsaw, Polska emagine Consulting Pełny etat

    Industry: Finance / Banking Location: Gdańsk / Warsaw (Hybrid Work Model) Project Languages: English and Polish Rate: -zł/h net+VAT Duration: Long term Join dynamic team in the Finance/Banking industry! We are currently seeking a skilled Expert IT Security Specialist to contribute to our data protection and information security initiatives....

  • Security Consultant

    3 tygodni temu


    Warsaw, Polska JUARA IT SOLUTIONS Pełny etat

    Job Description: Security Consultant (Cloud Platform-Specific Security) Location: Poland Experience: 10+ years Employment Type: Full-time Role Overview: We are seeking a highly experienced Security Consultant with deep expertise in designing, implementing, and managing cloud platform-specific security policies and controls. The successful candidate...

  • Cloud Security Engineer

    2 miesięcy temu


    Warsaw, Polska Fusion Consulting Pełny etat

    Job DescriptionSecurity / Cloud Security EngineerWe are looking for a dedicated Security / Cloud Security Engineer to safeguard our cloud and on-premise infrastructures, ensuring they meet top-tier security standards and comply with regulatory and company policies. This role involves implementing security best practices across both environments, managing...

  • IT Security Analyst

    4 miesięcy temu


    Warsaw, Polska b2bnetwork Pełny etat

    Detailed description of work task to be carried outIdentifying remediation gaps and driving towards their resolutionAdvising stakeholders on the available solutions and actions that must be undertakenAnalyzing scanning results to define concrete steps directed at de-risking the bankCollaborating with remediation accountable and responsible...