Cybersecurity Standards and Procedures Officer
Wrocław, Dolnośląskie, Polska, 51-502Wichtige Merkmale des Angebots
Vollzeit
Einarbeitungsschulung
Description
Cybersecurity Standards and Procedures Officer (Reporting to: Head of Cybersecurity Standards & Procedures Office)
Who Are You?
Five or more years of professional experience in Information Security, GRC, Risk Management, or comparable areas
Working knowledge of Information Security Management Systems, ideally based on ISO/IEC 27001 or similar frameworks.
Experience contributing to policies, standards, or procedure development.
Familiarity with regulatory environments (e.g., NIS2, DORA) is an advantage.
Strong analytical and writing skills, with the ability to turn complex concepts into clear documentation.
Relevant certifications (or willingness to pursue them), such as ISO 27001 Implementer/Auditor, CISA, CISM, or CompTIA Security+.
Ability to collaborate across global, cross‑functional teams and manage multiple documentation workflows.
What You’ll Gain
A key role in one of the company’s most strategic cybersecurity programs.
Opportunities for professional development, certification pathways, and exposure to executive‑level governance.
The chance to influence how security is communicated, governed, and embedded throughout a global enterprise.
Compliance & Regulatory Alignment
Support compliance efforts for ISO/IEC 27001 and other relevant regulatory or industry frameworks (e.g., NIS2, DORA, PCI-DSS, HIPAA).
Assist in preparing materials and evidence for internal and external audits.
Monitor regulatory and standardization developments and assess their impact on internal security documentation.
Help business units interpret and implement control requirements as part of the compliance program.
Governance & Documentation Support
Contribute to the design and operation of the governance model for security documentation, including standards, procedures, guidelines and operating procedures (SOPs).
Draft, review, and maintain ISMS documentation to ensure clarity, consistency, and alignment with strategic directives.
Create clear, visually structured process descriptions, workflows, and governance diagrams that support understanding of ISMS requirements across the organization.
Support the documentation lifecycle: revision cycles, approvals, distribution, and retirement.
Ensure documentation accurately translates high‑level requirements into actionable, organization‑wide security controls.
ISMS Operations & Continuous Improvement
Support the ongoing maintenance of the Volvo Group Digital Technology & Operations ISMS, including tracking updates, ensuring consistency, and managing interdependencies between documents.
Contribute to maturity assessments, gap analyses, and corrective action plans.
Maintain documentation repositories and ensure accessibility, version control, and stakeholder communication.
Stakeholder Collaboration & Communications
Work closely with Cybersecurity as well as control owners and control implementors across Volvo Group Digital Technology & Operations to ensure documentation aligns with technical realities, compliance expectations, and operational needs.
Coach, guide, and train control owners, implementors, and subject‑matter experts on how to interpret, apply, and operationalize security standards, procedures, and requirements.
Facilitate working sessions, clarification meetings, and onboarding sessions to support consistent understanding and adoption of security documentation
Assist in preparing presentations, briefings, and reports for leadership, governance bodies, and audit stakeholders.