Senior Analyst InfoSec Operational Excellence

MAKE HISTORY WITH US! At PMI, we’ve chosen to do something incredible. We’re totally transforming our business and building our future on smoke-free products with the power to deliver a smoke-free future With huge change, comes huge opportunity. So, wherever you join us, you’ll enjoy the freedom to dream up and deliver better, brighter solutions and you will have the space to move your career forward in many different areas/directions. IT at PMI PMI’s journey to a smoke-free future implies a shift from a tobacco manufacturer to a science and technology-based consumer facing organisation. Such a shift creates an abundance of unique and transformative IT projects to match all levels of skills and ambitions. You’ll feel like you’re working in a start-up – with the freedom to shape and define the future of digital, but with the support and scope of a vast global business. You’ll get a chance to work with cutting-edge technologies (e.g., Cloud, APIs, AI) as well as management practices (e.g., Agile, Design Thinking, Product Management). Our environment is fast-paced and highly collaborative. If you want the freedom to find new ways to connect with consumers, there’s no better place to progress your career. Digital at PMI is dynamic, diverse, and disruptive. Join us and become a part of a top talent team where you can bring new ideas to life in a global function that is a key driver of the success of our business. IT HUB Krakow With a team of over 300 and more than 20 nationalities, the IT HUB Krakow plays a critical role in creating a smoke-free future around the world. Become a part of a team of engineers, technicians, experts, solid IT freaks, researchers and game changers and create new IT work standards with us! Joining Information Security Running at the forefront of PMI's Digital Transformation, Information Security offers guidance, solutions and advisory all across PMI, supporting our secure journey towards a smoke-free future. Our scope ranges from security assessments, architecture, governance and risk advisory, through resilience, cyber threat intelligence and incident response, to supporting PMI Functions, Markets, and Platforms (e.g. Finance, People & Culture, Operations, Consumer or Product) and building an organizational security culture. JOIN US! We are seeking a Senior Analyst Information Security to join our dynamic team at Philip Morris International. As a Senior Analyst InfoSec Operational Excellence, you will participate in various aspects of infosec reporting, operational performance and capability development activities to ensure the effectiveness of our information security services and processes. You will collaborate with various team members from the front and back-end teams, and work on the development of reporting functionalities. WHO ARE WE LOOKING FOR? • Bachelor's degree in Computer Science, Information Technology, or a related field • 3+ years information security and/or related technology experience assisting organizations in implementing appropriate IT Security practices, implementing, and reporting on cybersecurity strategy • Good knowledge of cybersecurity, IT, agile project management principles, frameworks, and industry standards (e.g., NIST CSF, ISO 27001, ISF, SAFe, ITIL). • Demonstrated experience in working with managers to prepare information security reports for stakeholders, and other interested parties • Demonstrated experience in working across first and/or second line of defence functions including business and IT, engaging, and collaborating on information security programs of work • Use of industry-standard frameworks for assessing and benchmarking information security services • Considerable writing proficiency, story-telling and oral presentation skills, in English. Analytical skills, conceptual design skills and decision-making skills • Desired experience in data analytics environments and/or use of analytical tools such as Microsoft PowerBI, Microsoft SSIS, SQL server • Excellent communication and interpersonal skills, with the ability to effectively collaborate with cross-functional teams and present complex technical information to non-technical stakeholders • Relevant certifications in information security such as SSCP or similar are desirable • Excellent command of English, any additional languages are a plus • Practical experience in Agile/DevOps organizations and cultures WHAT WE OFFER YOU • Wide range of trainings, optional language classes, further education and professional qualification support possibility • Private medical and dental care, life insurance • Lunch card (Sodexo), Multisport & Cafeteria program • Hybrid model of work and flexible working arrangements • Employee pension plan • Free bike and car parking for all employees • Eligibility to participate in Copyrighted Work program (possibility to increase tax-deductible costs) HOW CAN YOU MAKE HISTORY WITH US? • Participate in the development of comprehensive information security reporting mechanisms for multiple channels and stakeholders such as executive teams, operational and management teams, internal and external stakeholders • Collaborate with front end and back-end InfoSec teams to define reporting objectives, scope, and methodologies that align with business needs and compliance/conformance requirements • Assess the various audiences for security awareness level and develop custom engagement strategies to facilitate effective requirements gathering and stakeholder management • Identify and work with the operational excellence manager in prioritising gaps in operational performance of InfoSec service delivery with the aim to support/promote continuous improvement of services and processes • Analyse InfoSec existing capabilities and provide recommendations for improving our capabilities • Stay up to date with the latest cybersecurity trends, threats, and technologies, and ensure that reporting methodologies and practices reflect industry best practices • Partner with internal stakeholders to develop effective metrics to measure our cyber risk posture • Foster a culture of effective reporting and promote best practices among employees through defined and communicated ways of working • Collaborate with other cybersecurity teams to ensure a holistic approach to cybersecurity reporting and service delivery • Work with the infosec operational excellence manager to ensure Information Security strategy is aligned with the overall PMI strategy and supports the mission and vision of PMI Each person who sends the application will receive information about its status. #LI-Hybrid