Overview
Information Security Officer Jobs in Prague, Czechia at ČEZ
Title: Information Security Officer
Company: ČEZ
Location: Prague, Czechia
Company: Elevion Group
Lokalita: Praha
Elevion Group (member of the CEZ Group), is an international company based in Prague/Amsterdam with more than 5,000 employees and revenues around 1B Euro. The Group consists of 60+ companies and is looking for Information Security Officer who performs the following activities:
- Management of cybersecurity and information security in specific German entities of the Group.
- Ensures the implementation of the Elevion Group policies in specified Elevion companies.
- Lead NIS2 compliance initiatives and oversee NIS2 compliance status of in-scope entities.
- Provides advice and support management of information security risks.
- Co-ordinates and participates in the Group wide security initiatives.
- Proactively identifies the information security risks, brings them to the attention of management and ensures action plans are defined and monitored.
- Ensures the implementation of relevant business continuity plans – BCP and DRP – including the necessary updates.
- Implements mechanisms to increase employees’ awareness about cyber threats and cyber security.
- Implements processes of regular assessment of cyber security levels.
- Creates, maintains and improves the documentation, policies and procedures in the cybersecurity area.
- Performs security assessment of vendors.
- Coordinates and follows up on results of penetration tests, vulnerability scans, etc.
- Participates in definition and evaluation of security awareness campaigns.
- Reports on information security status to management.
- Role is second line of defense role and reports directly to Chief Information Security Officer, Elevion Group.
The role is suitable for Information Security Officer who is process-focused and willing to gain detailed hands-on knowledge of modern IT and Security platforms such as XDR, Vulnerability Management Solutions, Azure Cloud Security, modern platforms for phishing awareness and risk management.
What do we expect from you?
- University degree.
- 3 years of practice in cyber and information security.
- Knowledge of relevant industry standards in information security management and risk management.
- Knowledge of security technologies and key security concepts and principles.
- Technical IT knowledge allowing good level of discussion with IT teams.
- Excellent communication skills and the ability to explain complex technical concepts in a simple and understandable way.
- Fluent in English and German, additional languages are a big plus.
- Relevant professional qualification such as CISSP, CISM, CISA or similar is nice to have.
- Ability to learn new knowledge.
- Loyalty, reliability and responsibility.
Benefits
- Bonuses
- Sport, culture and free time vouchers
- Cell phone
- Insurance contribution
- Company events
- Flexible working hours
- Holidays 5 weeks
- Meal vouchers
- Notebook
- Sick leave
Diversity and Inclusion at CEZ Group
At CEZ Group, we value all employees. We will motivate you to develop your strengths, gain new experience and grow in your career. At the same time, we emphasize work-life balance so that you have enough time to spend with your loved ones or to pursue your hobbies. We believe that diversity means strength, which is why we strive for diverse work teams and equal opportunities. Everyone has a chance to be unique.
You can learn more about our approach to employees in the CEZ Group Diversity and Inclusion Policy.
