В Procter & Gamble требуется Information Security Deputy Director.
The InfoSec deputy role is responsible to lead Eastern Europe sites in the physical, cyber and cultural security transformations needed to ensure that organization is encouraged and equipped to govern Information Security and mitigate cyber risks. As the information security and privacy protection culture champion, the InfoSec deputy will develop and integrate the required Information Security capabilities vital for P&G to maintain a strong information security stance in the way it conducts the business.
Responsibilities:
- Lead and drive technical expertise connection with business needs and the broader Information security organization
- Conduct regular information security risk assessment, security posture and lead risk management plan
- Be responsible for Information Security Strategic Development, Security Methodology, Security Compliance, Security Awareness programs and Security Policies tailoring to Eastern European sites including wide interpersonal deployment
- Partner with Corporate Functions to conduct Incident Management, Vulnerability Management, Data Security and Data Loss Prevention process
- Localization activities, and report the results to the senior management
- Be responsible for ensuring compliance with regulatory requirements, as well as internal policies and procedures
- Collaborate with security providers to establish SLAs, KPIs, and strategies' deployment, ensuring the implementation of suitable solutions to minimize business risk exposure
Compensation & Benefits:
- Competitive base salary, the final offer will be determined based on the results of the interviews
- Monthly lunch & flexibility allowance 5 000 RUB gross
- Medical, travel, and life insurance
- Flexible work hours and the possibility to partially work from home
- Access to P&G’s global comprehensive training portfolio
- Relocation support in case you move to Moscow from another region
Job Qualifications:
Qualifications (Expected):
- Higher niche education (Information Security) or professional retraining in the field of "Information Security," approved by the Federal Service for Technical and Export Control (FSTEC), Federal Security Service (FSB), and the Educational and Methodological Association on Information Security in Russia, with a total duration of 512 hours
- Ability to lead and influence globally and collaborate with multi-function teams on a leadership level, with demonstrated proficiency in strategic goal setting and prioritization
- Demonstrate expertise in complying with information security-related requirements in accordance with the laws of the Russian Federation. (Federal Law No. 187, Presidential Decrees No. 166 and 250 etc.)
- 3-6 years of relevant experience
Qualifications (Preferred):
- Knowledge of international security standards (e.g., ISO, NIST)
- External Information Security Certification (CISSP/CISM or equivalent)
- Experience with Incident Response, Vulnerability Remediation, Pen testing
- Experience in governance or knowledge of IT and Information Security policies
- Experience as a technical project leader with a proven track record