Information Security Leader

at  Philip Morris International

MAKE HISTORY WITH US!

At PMI, we’ve chosen to do something incredible. We’re totally transforming our business and building our future on one clear purpose – to deliver a smoke-free future.
With huge change, comes huge opportunity. So, wherever you join us, you’ll enjoy the freedom to dream up and deliver better, brighter solutions and the space to move your career forward in endlessly different directions.
PMI’s journey to a smoke-free future implies a shift from a tobacco manufacturer to a science and technology-based consumer facing organisation.
Such a shift creates an abundance of unique and transformative IT projects to match all levels of skills and ambitions. You’ll feel like you’re working in a start-up – with the freedom to shape and define the future of digital, but with the support and scope of a vast global business. You’ll get a chance to work with cutting-edge technologies (e.g., Cloud, APIs, AI) as well as management practices (e.g., Agile, Design Thinking, Product Management). Our environment is fast-paced and highly collaborative. If you want the freedom to find new ways to connect with consumers, there’s no better place to progress your career.
Digital at PMI is dynamic, diverse, and disruptive. Join us and become a part of a top talent team where you can bring new ideas to life in a global function that is a key driver of the success of our business.
IT HUB Krakow
With a team of over 300 and more than 20 nationalities, the IT HUB Krakow plays a critical role in creating a smoke-free future around the world. Become a part of a team of engineers, technicians, experts, solid IT freaks, researchers and game changers and create new IT work standards with us!

HOW CAN YOU MAKE HISTORY WITH US?

• Act under the supervision of the Manager IT Information Security to implement, report and follow up on risk reduction activities with projects and BAU; and work together with key stakeholders to oversee security improvement activities
• Engage with business stakeholders from the Life Sciences function on projects and activities that require Information Security expertise and advice
• Engage with business and IT platform peers throughout system lifecycle on “security-by-design” and “privacy-by-design” concepts, methods and tools
• Perform active governance on key security metrics for systems under his/her responsibility
• Perform or take accountability for general IT control activities in scope of the solutions including evaluating 3rd party cyber maturity and performing ongoing vendor risk governance
• Lead security awareness trainings and provide coaching, trainings, promoting webinar attendance or similar activities to raise the security awareness of the function
• Support projects (implementation or evolutions of IT applications) thought the process in all IT security related topics (supports RFPs and its outcomes, reviewing security related documentation and system configuration, identifying risk and point for attention)
• Partner with Information Security (2LoD) to ensure that PMI follows best practices and latest market standards in application and system security by continuously optimizing tools, techniques and methodologies
• Take accountability or responsibilities of tasks required for the resolution of cyber incidents in impacting solutions under his/her responsibility, from identification to eradication, working closely with central/platform IT teams and InfoSec (e.g. SOC and IRM)
• Perform risk assessments and vulnerability management activities for functional support areas. Manage, monitor, and report on the full lifecycle of risk management at the system or platform level, from identification to closure
• Drives cybersecurity resilience activities in the assigned functional domain (e.g. back-up, restored, Disaster Recovery)
• Support during internal or external audits
• Support the Qualification and Validation activities required for GxP systems
• Ensure information security standards are applied to Laboratory Systems and Instruments
• Act as the Manager IT Information Security’s backup

Where we See This Role Going

• As we progress on our business transformation journey, the First Line of Defense will help drive the adoption of PMI IT Security Standards to help protect our business and data
• The role actively participates in securing the portfolio with opportunities to co-design approach and driving it together with colleagues
• We see this role further growing with the function and the company, and are looking for an experienced profile with the clear willingness to help secure the application portfolio within the IT organization

• As we progress on our business transformation journey, the First Line of Defense will help drive the adoption of PMI IT Security Standards to help protect our business and data
• The role actively participates in securing the portfolio with opportunities to co-design approach and driving it together with colleagues
• We see this role further growing with the function and the company, and are looking for an experienced profile with the clear willingness to help secure the application portfolio within the IT organizatio