Internal Security Senior Manager/Manager

Вакансия № 2427762 от компании PwC, Департамент корпоративных служб на Электронной Службе Занятости Населения Москвы.

☑ Основной блок:

Опыт работы: более 6 лет.

Тип занятости: полная занятость.

График работы: полный день.

Зарплата: по результату собеседования.

Примерное место работы: Россия, Москва.

Это объявление № 2427762 добавлено в базу данных: Среда, 12 марта 2025 года.

Дата его обновления на этом интернет-ресурсе: Вторник, 18 марта 2025 года.

Прочитано соискателями - 230 раз(а);
Отправлено откликов - 0 раз(а);

Our Internal Security team is looking for a Security Senior Manager/Manager to lead security business processes.

The role:

Charged with leading its information protection activities;
Implement supplemental local information protection policies; identify and address local information protection risks; comply with the Firm’s legal, regulatory, and contractual obligations in respect of the information;
Make all information protection policies, guidance and procedures available in a format that is generally accessible to all partners and staff;
Conduct annual information protection risk assessment;
Develop and implement an annual information protection action plan;
Set up training for all new personnel on information protection policies and procedures;
Implement an annual information protection training curriculum;
Provide expertise on related to data protection technology environment and cross-border data flows;
Implement measures that are necessary to enable transfer of client confidential information;
Implement measures required by law or regulation to enable it to transfer the personal data of its partners and staff.

Experience and knowledge required:

Multiyear experience of information security function management in a large multinational company;
Knowledge of personal data and trade secret protection according to legislation, laws and standarts;
Writing recommendations experience on draft documents of federal executive bodies regulating the issues of information security;
Wide experience in conducting presentations/security trainings for different communities, including public events;
Wide experience in design and implementation of the Data Centers security;
Extensive people management experience;
Knowledge of world recognized information security standards and best practice (ISO 27000 family, NIST 800 series, etc.);
Knowledge of modern security trends and concepts, emerging threats and mitigation approaches;
Knowledge of security and related methodologies: Information Risk Management, Business Continuity Management, Change Management, Threat and Vulnerability management, Penetration Testing, Security performance measurement, Suppliers security, etc. ;
Participation in the development of regulations, guidance documents;
Knowledge of information security solutions and technologies (Network security, OS security, Application security, etc.);
Knowledge of programming languages, enterprise systems administration principles.

Professional certifications required:

Information Security management certifications: CISSP, CISA, CISM – as advantage
Technical security certifications: CEH, ECSA, ITIL certification. – good to have

Competencies we are looking for:

Strategic thinking and understanding of strategic business goals;
Ability to link security objectives to business objectives and derive relevant security strategies.
Good communication skills. Open and friendly attitude to peers, internal and external clients;
Good project management skills;
Good problem and conflict management skills. Ability to take obstacles positively;
Good presentation skills. Ability to present to different audiences – from juniors to senior business management;
Good people management skills;
Good technical knowledge and ability to perform IT security handwork;
English – upper intermediate, both oral and written;
Russian – fluent.