Cybersecurity Control Design Manager

O projekcie: At Mindbox we connect top IT talents with technology projects for leading enterprises across Europe.  Join Our Team as a Cybersecurity Controls Design Manager! Are you passionate about shaping a robust cybersecurity control environment and ensuring compliance with industry standards? We are looking for a Cybersecurity Controls Design Manager to lead the design, maintenance, and continuous improvement of our cybersecurity controls framework. Sounds like your kind of challenge?   #Li-Hybrid - 6 days per month on-site in Cracow  What you get in return - Flexible cooperation model – choose the form that suits you best (B2B, employment contract, etc.) - Hybrid work setup – remote days available depending on the client’s arrangements  - Collaborative team culture – work alongside experienced professionals eager to share knowledge  - Continuous development – access to training platforms and growth opportunities  - Comprehensive benefits – including Interpolska Health Care, Multisport card, Warta Insurance, and more  - High quality equipment – laptop and essential software provided Wymagania: - Experience & Expertise: - Strong background in Risk and Controls Management, including control design, implementation, and assessment. - Subject matter expertise in Control Management and familiarity with GRC tools (e.g., Helios). - Technical Knowledge: - Generalist knowledge of Cybersecurity (specialist expertise is a plus). - Familiarity with NIST 800-53 and CIS measures and metrics. - Understanding of KCIs, KRIs, and KPIs in risk and control management. - Skills: - Excellent technical writing skills and proficiency in written English for high-quality documentation. - Ability to translate complex IT concepts into business-friendly language. - Strong stakeholder management and communication skills; influential and credible. - Certifications: - Recognized cybersecurity certifications are an advantage. Joining this project you’ll become part of Mindbox – a tech-driven company where consulting, engineering, and talent meet to build meaningful digital solutions. We’ll back you up every step of the way, accelerate your development, and ensure your skills make a difference. Codzienne zadania: - Ensure Cybersecurity-owned controls in the Risk and Controls Library are designed according to organizational requirements and industry standards (e.g., NIST 800-53). - Define and maintain control measurements aligned with the KCI Design Framework and CIS best practices. - Ensure controls comply with legal, regulatory, and mandatory requirements. - Prepare and present control governance reports feeding into Cyber and Tech RCMM. - Design, manage, and maintain Policies, Procedures, and Standards for Cybersecurity controls across Engineering, Operations, and Security Assessment. - Work closely with Control Owners and other stakeholders to ensure effective control implementation and reporting. - Proactively manage issues and actions, including senior stakeholder engagement. - Continuously assess and improve operational processes to enhance control effectiveness. - Provide expertise on Helios-related issues and actions.