• jobs
  • 1 month ago

jobs description

We are Yettel!

Yettel Bulgaria, part of PPF Telecom Group, is a telecommunications company that connects over 3 million customers to people, devices and businesses. Until March 2022, the company operated on the Bulgarian market as Telenor Bulgaria.

We are a company that wants to discover, develop and invest in technology to serve people in the most useful and effective way for them. At Yettel, we believe that a balanced life is a better life. That's why we do everything we can to help people balance the things that matter to them, to make better choices, especially when it comes to technology and its role in our lives.

We want to create the future together with you. That's why we at Yettel are ready to discover and develop your talent and unique skills as we change the world together.

Role Overview:

Lead the execution of the enterprise cyber risk strategy, conducting risk assessments, and developing cybersecurity requirements. Maintain the risk register, report key risk... indicators, and ensure compliance with regulatory frameworks. Oversee supplier evaluations and manage a cybersecurity awareness training program.

Your responsibilities would be:
• Identify and classify risks, define tolerances, prioritize mitigation, and track remediation per Yettel's Risk Management policies.
• Coordinate cybersecurity risk assessments and develop requirements for business and technology activities, including new deployments and critical assets.
• Develop business cases and requirements to address risks, prioritize risk response, and simplify compliance for stakeholders.
• Regularly update the Risk Register to address threat landscape changes and track mitigation progress.
• Define and report KRIs to measure cybersecurity risk management and report to executive management.
• Define controls for regulatory and industry-specific compliance (e.g., GDPR, ISO27001) and facilitate certification efforts.
• Ensure third-party compliance with cybersecurity requirements and support procurement and business stakeholders.
• Oversee the process for managing exceptions to cybersecurity policies and tools.
• Collaborate with cybersecurity leadership to set and monitor continuous improvement priorities.
• Execute a cybersecurity awareness training program to promote desired security behaviors across Yettel and key stakeholders.

We expect from you:
• Experience in Information Security & Compliance: Significant experience in information security and compliance, demonstrating a strong understanding of industry standards and best practices.
• Successful Audit Leadership: Proven track record of leading audits, including ISO 27001, SOC 2, and other compliance frameworks, ensuring adherence to stringent security standards.
• Expert in Compliance Management: Skilled in managing multiple compliance efforts with an in-depth understanding of process design, implementation, and evidence collection to meet regulatory requirements.
• Cloud Security Knowledge: Well-versed in AWS, Azure, or Google Cloud principles, understanding their impact on audit preparation and ensuring secure cloud infrastructure.
• Leadership in Security and Compliance Teams: Demonstrated ability to lead security and compliance teams, fostering a culture of security awareness and continuous improvement.
• Exceptional Communication Skills: Excellent communication and interpersonal skills, capable of effectively conveying complex security concepts to diverse stakeholders, including technical teams, executives, and non-technical staff.

• Positive workplace culture where you would receive all the support you need from your peers and managers in order to achieve your personal and team goals
• Annual bonus based on your personal performance
• Preferential prices for mobile devices and accessories
• Unlimited mobile services and mobile internet
• Flexible working hours
• Monthly food and gift vouchers
• Transportation allowance
• Additional health insurance

Over its 20 years history on the Bulgarian market, the company has built a strong track record as a pioneer in wireless and beyond, launching Bulgaria’s first commercial 4G network in 2015, the first VoLTE service in 2018 and paving the way for the development of 5G with the country’s first 5G network test. Yettel’s sector-leading approach to infrastructure has won seven consecutive Best in Test certificates awarded by the global gold-standard benchmarking organization umlaut.

Today, Yettel Bulgaria employs more than 1800 people, operates more than 180 retail stores, with its mobile network covering more than 99% of the Bulgarian population.

Join Yettel now by sending us your up-to-date CV.

Only shortlisted applicants will be contacted with information about next steps of our selection process.

Applicants are treated with strict confidentiality following the applicable personal data protection legislation
Sofia Bulgaria


Apply - Cyber Risk Governance Expert Sofia