Central Europe Zone (CEE)is a regional organization in charge of BNP Paribas Cardif activities in CZ, SK, AT, HU, RO, BG. The Shared Service Center (SSC), which is part of BNP Paribas Cardif Services is in charge of managing all mutualized IT and Security activities within the Zone and is growing rapidly in Prague. In this context, we are looking for a CEE Security Officer who will mainly be responsible for security activities in European (CEE) region.

This role covers following activities

• Responsibility for the management of security for the following areas: Information System security, Business Continuity Plan (BCP) and IT Continuity Plan (ICP), People and Premises, CyberSecurity
• Management and coordination of activities of Security correspondents in respective countries
• Ensure alignment of Security processes & documentation across the European countries
• Define security organization, security rules and processes for CEE countries
• Organize the CEE Security materials and documentation (e.g. policies and procedures)
• Management of security risks and incidents
• Prepare a budget for the area of security, prepare follow up/updates, cost analyses and reporting
• Define and plan the overall delivery of the Cyber Security Project across CEE including definition of KPIs, milestones and deliverables
• Ensure coordination and delivery of Cyber Security project
• Report the security situation (status, progress, issues) to management functions on CEE and regional level
• Verifying of effectiveness of implemented controls
• Provide regular reporting on progress of all Security areas to the BNPP Cardif & Group and CEE Stakeholders

Your profile

• Minimum of 5+ years in Security Area (Information Security, CyberSecurity)
• Leadership skills and the ability to work effectively with business managers and IT operations staff
• Experience with common information security management frameworks such as international Standards Organization (ISO) 2700x, NIST Cyber Security Framework
• Knowledge of and experience in developing and documenting security architecture and plans, including strategic, tactical and project plans
• Strong analytical skills to analyse and understand security requirements and relate them to appropriate security controls
• Experience in system technology security testing (vulnerability, scanning and penetration testing)
• A strong understanding of the business impact of security tools, technologies and policies
• English proficiency at C1 level

What we offer

• Challenging environment with international set up
• Possibility to work with top professionals on the market
• Strong support of training new skills and experience growth
• Modern offices close to Palmovka metro station
• 25 days of holidays, 2 sicks days, a day of leave for CSR activity
• Wide offer of other benefits

Benefits

• Bonuses
• Cell phone
• Discount on company products / services
• Notebook
• Contributions to the pension / life insurance
• Flexible start/end of working hours
• Meal tickets / catering allowance
• Holidays 5 weeks
• Educational courses, training
• Cafeteria
• Refreshments on workplace
• Contribution to sport / culture / leisure
• Education allowance
• Sick days
• Occasional work from home