• jobs
  • 4 days ago

jobs description

With 40 years of experience in the international market and 17 years in Romania, HN Services means:
• Digital transformation and IT professionals
• Diversity of technical roles
• Wide IT market exposure in different domains of activity
• A dedicated internal Training Center in software development.

• Participate and contribute to the definition and deployment of IT Risk and Cyber Strategy
• Lead Cyber Security projects and provide expertise to the entity’s projects
• Provide executive oversight to manage operational security priorities, monitor the effective implementation of IT security initiatives, and coordinate the execution of IT cybersecurity services for Transition Services Agreements
• Perform operational security activities and controls (DLP analysis, AV, patching and other threats monitoring and reporting)
• Support investigation of cyber or operational incidents to identify the root cause, estimate the business and financial impact, collect data and... reports them, define action plans, implement, monitor and report their progress
• Perform IT risk and security assessments on request (TSA preparation, operational and network security, due diligence for third parties, review of evidences on business continuity plan…), including definition and coordination of risk remediation plans and associated reporting
• IT Risk management: perform and challenge risk assessment (RCSA), establish corrective measures with Business and IT stakeholders to reduce the identified risks
• Work closely with PF RISK ORC to ensure IT risks are correctly reported and monitored
• Coordinate and implement audit recommendations to ensure compliance with Group and regulatory requirements
• Serve as 1st Line of Defense for IT Risk & Cyber Security perimeters, perform the analysis of inputs received from several different stakeholders to execute the IT control campaigns, define remediation plans accordingly
• Coordinate the execution of the awareness campaigns to increase the level of awareness related to IT Risk & Cybersecurity
• Coordinate the execution of Business Continuity and Crisis Management exercises
• Participate to the preparation of IT Risk & Cyber security Committees by ensuring the consistent and relevant reporting on overall IT Risk and cyber status (KPIs, maturity level, controls, procedures) and to enable the execution of its IT Risk strategy
• Produce dashboard and present statistical analysis to effectively measure and improve level of IT operational security and protection measures
• Monitor and coordinate the schedule of regular reports, dashboards and IT security controls plan for TSA

• At least 8+ years of relevant experience in IT Risk Management and Cyber Security, preferably for international financial institutions or shared service centers
• Expert knowledge notably in network security, endpoint security and data loss prevention systems, Identity and Privileged Access Management, risk and security posture assessment
• Good knowledge in Third Party Risk management, application security, secure coding practices, OWASP, Static or Dynamic Application Security Testing (SAST, DAST)
• Effective experience in execution of controls plan, procedures creation, review and adaptation on IT Risk, cyber security and continuity framework, successful delivery of IT Security projects
• Proactive attitude, excellent analytical and problem-solving mindset with strong attention to detail
• Good interpersonal skills and cooperative attitude to manage multiple stakeholders and providers in an international context
• Excellent verbal and written communication skills in English to formalize and produce reporting (French is a plus


Apply - Senior IT Risk & Cyber Security Specialist Romania