Information Security Specialist

Our Client is an international group operating in the hospitality industry, managing a broad portfolio of properties across multiple European countries. The organization combines a modern approach to IT with real business needs, treating information security as a key pillar of its long-term strategy.The project focuses on strengthening cybersecurity across the entire organization – from cloud environments, through compliance standards, to building security awareness among employees.We are looking for an experienced Information Security Specialist who will combine technical expertise with coordination and close collaboration with internal teams and external vendors (50/50 split between hands-on work and stakeholder coordination). WORK MODE: hybrid (Warsaw) – 1–2 office visits per month, more if you wishAVAILABILITY: we are looking for candidates available immediately or with a maximum 1 month notice period WHAT WILL YOU BE DOING? • Cooperating with SOC/CERT teams and cloud managed service providers on daily security incident response, including coordination of major security incidents • Identifying security improvement areas across Microsoft 365 (M365 – Microsoft 365), Azure, and enterprise-class systems (e.g. Oracle Fusion) • Delivering selected security improvements hands-on, as well as coordinating initiatives implemented by application, cloud infrastructure, and network teams • Advising on new digital initiatives – from vendor security assessments to best-practice recommendations at the solution design stage • Building and maintaining security awareness programs, including recurring trainings and cyber-attack simulation exercises • Supporting the organization in activities related to security standards and regulatory compliance (e.g. PCI DSS, GDPR, SWIFT CSCF) WHAT ARE WE LOOKING FOR? • At least 3 years of experience in cybersecurity • Hands-on experience with Azure and Microsoft 365 in the area of security configuration and maintenance • Strong communication skills and the ability to discuss security topics with both technical and business stakeholders in clear, non-technical language • Very good command of English (minimum B2 level) Nice to have: • Experience working with or closely alongside SOC (Security Operations Center) teams • Experience with PCI DSS (Payment Card Industry Data Security Standard) • Familiarity with SWIFT CSCF (Customer Security Controls Framework) • Participation in projects related to information classification, DLP (Data Loss Prevention), or cloud compliance initiatives WHY IS IT WORTH IT? • Long-term cooperation (minimum 12 months) • Opportunity to work in a small, international team (Poland, France, Hungary) with direct reporting to the Group CISO • No on-call duties – incident response handled by a dedicated SOC • Real impact on the information security direction of a large, distributed organization • A role combining technical responsibilities with stakeholder-facing and advisory work • Simple and fast recruitment process: 2 meetings Thank you for all applications! We will contact selected candidates.