Our client is a US-based cybersecurity company headquartered in New York City whose mission is to support its clients in mitigating cyber threats. They are focused on three main areas: Cyber Breach Response, Cloud Security Services, and Proactive Cyber Services. Their military-grade professionals have decades of experience in cyber operations and apply their knowledge of the attacker perspective to facilitate efficient, effective, and scalable responses to cyber breaches. Their growing team combines operational and technological disciplines with instinctual methods to keep their client’s information safe.

Your role is to:

  • Manage existing and implement new information security related standards and compliance across the organization such as SOC 2, HIPAA, EU-GDPR and DFS, NIST 800-171;
  • Handle service requests such as SOC 2 report distribution, BAA, completing security questionnaires, query with regards to information security / compliance received;
  • Design, review and update information security policies and procedures;
  • Perform information security risk assessment and risk management;
  • Evaluate the implemented controls to identify any gap and improve the effectiveness score;
  • Conduct third party vendor risk assessment and apprise stakeholder of the risk / findings;
  • Assist with information security assessment of new or merged teams to identify gap, ensure timely remediation and cover under company’s existing information security / compliance governance;
  • Work within the team to identify, track, remove impediments to improve internal auditing process and support the automation of manual and redundant audit activities;
  • Perform internal and participate in the external audit, coordinate with the auditor and internal team for timely collection of the evidence;

  • A possibility to join a team of security consultants investigating computer crimes and breaches that make the headlines – and many more that don’t;
  • Great opportunity for personal development in a stable and friendly multinational company;
  • Competitive salary;
  • Remote work together with participation in global projects;
  • A possibility of growing your craft alongside like-minded professionals.

Your skills and experiences:

  • 3+ years of experience in a similar position, supporting GRC security initiatives with a global scope and interaction requirements;
  • Deep knowledge working with frameworks such as ISO27001/27002, SSAE16, GDPR, NIST 800-171, NIST 800-53;
  • Superior analytical and critical thinking skills, organizational skills, and meticulous attention to detail;
  • Experience in implementing, managing and supporting an Information Security Management System;
  • Experience in Information Security Audit;
  • Demonstrated ability to work independently and as part of a team;
  • Excellent English skills (C1).

Nice to have:

  • Experience in the software or technology service industry;
  • Experience in enterprise risk management;
  • Security certification such as CISSP, CISM, CIPP, or CISA.

Winged IT is one of the fastest growing companies in Poland which provides IT Outsourcing and Recruitment services. Together with Soflab Technology and other companies we are part of Soflab Group which has delivered more than 5 thousand projects to 100 clients in more than 10 countries. Our offices are located in Katowice and Warsaw. Winged IT’s mission is to deliver customizable Human Intelligence in an era of AI. We are an independent supplier with a focus on software development, project management, QA, and business analysis. We provide both IT services outsourcing, as well as staffing solutions depending on the needs of our customers. Being a reliable partner and a highly-desired employer, we engage the best IT professionals from Poland and the Eastern Europe region. Winged IT’s Team exist of people with different skills and experience, but we are united by passion for our work. Our business model is based on being responsive and honest what allows us to achieve satisfied customers and build long-term mutually beneficial relationships.