Client Information Security Associate

Nasze wymagania: Background in IT or information security, or a strong interest in these areas combined with relevant technical knowledge. 1–2 years of experience in an international, corporate environment. Fluency in English at C1 level (both written and verbal). Strong communication and interpersonal skills (written, verbal, and presentation). Advanced skills in the MS Office suite (Word, Excel, and PowerPoint). Excellent organizational skills, with the ability to prioritize tasks and work to tight deadlines. Experience in providing direct services to internal or external clients would be highly valued. Mile widziane: Experience with automation and analytics tools such as Power Automate and Power BI. O projekcie: As part of the Global Cybersecurity Services (GCS) team, the Client Information Security Associate role requires close collaboration with internal business partners, domain experts, and external contacts to ensure the smooth processing of client assessments and audits. The role involves managing the team’s shared mailbox and the client work intake process, including monitoring the client assessment queue, responding to client security-related questions, and escalating appropriately if issues arise or a lack of assessment progress is observed. Our office is located in Kraków and we offer a 50/50 hybrid working model. Zakres obowiązków: Handle the client information security engagement and intake process from request creation to analyst assignment. Ensure the completeness of requests and proactively seek any missing information from the business. Negotiate due dates for client assessment requests with Aon business colleagues. Monitor, track, and respond to the team’s shared mailbox. Respond to requests from internal partners. Escalate identified issues to regional leads. Handle, monitor, and track client vulnerability campaigns for identified vulnerabilities or incidents. Create reports and dashboards to monitor and manage service request statistics and identify trends (in both Excel and the GRC tool). Populate and update internal team repositories (e.g., SharePoint, Loopio). Monitor and review client access requests to external cyber risk portals. Respond to basic security-related questions from clients.