Security Manager

Job Title: Security Manager

Duration: From September 2025 Through May 2028, with potential for extension

Location: Poland only (preferred in/near Warsaw)

Full-time – 40 hours/week

100% remote

Working hours: 8 AM – 5 PM CEST (Central European Summer Time)

Languages: English (required), French (beneficial)

Roles and Responsibilities:

• Advise on security-related matters to enhance the customer's security posture.
• Manage the ongoing maintenance, review, and implementation of the customer's Security Assurance Plan.
• Coordinate and communicate effectively regarding the delivery of contracted security services.
• Serve as the Single Point of Contact/Liaison between the Customer, Security Operations, Partners, and 3rd Party suppliers.
• Support customer-identified security incidents and investigations.
• Assist with customer-led security audits, ensuring compliance and readiness.
• Prepare and lead monthly security stewardship meetings to discuss the status of security projects and operational activities.
• Provide governance support over contracted security services, ensuring adherence to agreed policies and standards.
• Identify security gaps and provide recommendations for security enhancements.
• Review customer-generated reports to identify action items or security risks.
• Develop security policies, procedures, and related documentation to strengthen the security framework.

Qualifications:

• Bachelor's degree in Information Security, Computer Science, or a related field.
• Relevant certifications such as CISSP, CISM, or equivalent are highly desirable.
• Extensive experience in security governance, risk management, and compliance.
• Strong knowledge of GDPR, NIST, and ISO security standards.
• Proven experience in security reporting and analysis.
• Excellent communication and interpersonal skills, with the ability to interact effectively with stakeholders at all levels.

Tools and Technologies:

• Familiarity with security governance tools and platforms.
• Proficiency in using security frameworks such as NIST and ISO.
• Experience with security incident and event management (SIEM) tools.
• Strong understanding of data protection regulations, including GDPR.
• Ability to utilize reporting tools for security analysis and documentation.