Head of Security

Benefit Systems International S.A. is located in Warsaw and operates in the security domain. The company is engaged in large-scale cloud and security transformation projects, utilizing modern Microsoft security technologies.

• 5+ years of experience in cybersecurity and information security.
• Proven leadership experience managing security programs and cross-functional teams.
• Strong understanding of cybersecurity frameworks such as ISO 27001, NIST, CIS Controls.
• Experience implementing or supporting compliance with NIS2 or similar regulatory frameworks.
• Experience managing security within Microsoft-centric environments including Microsoft 365, Azure, Defender, and Sentinel.
• Strong knowledge of cloud security, identity and access management, security operations, and incident response.
• Experience presenting security strategies and risk assessments to executive leadership and boards.
• Excellent communication and stakeholder management skills.

Preferred qualifications:

• CISSP, CISM, CRISC, ISO 27001 Lead Implementer/Auditor, or equivalent certifications.
• Experience leading security transformation programs.
• Familiarity with AI governance frameworks and standards.
• Experience with Microsoft Security Copilot.
• Knowledge of European cybersecurity regulations and digital resilience requirements.

• Define and execute the organization's cybersecurity strategy and roadmap.
• Lead the development and maintenance of security policies, standards, and procedures.
• Ensure compliance with NIS2 and other applicable cybersecurity, privacy, and regulatory requirements.
• Establish and oversee cybersecurity governance, risk management, and reporting processes.
• Manage security incident response, crisis management, and cyber resilience programs.
• Oversee vulnerability management, threat detection, and security monitoring activities.
• Lead third-party risk management and supplier security assessments.
• Collaborate with business leaders to integrate security into digital transformation initiatives.
• Develop and maintain security awareness and training programs.
• Define and monitor security KPIs and executive-level reporting.
• Advise senior leadership on emerging cyber threats, regulatory developments, and strategic risks.

AI governance and security responsibilities:

• Develop and maintain governance frameworks for security at Group level.
• Establish policies for AI adoption, risk assessment, data protection, model governance, and ethical AI usage.
• Assess security and compliance risks associated with data.

Benefit Systems International S.A. processes personal data of candidates in accordance with applicable data protection laws. The recruitment process includes an initial 1-hour online interview via MS Teams. The company reserves the right to contact only selected candidates. Data is processed within the European Economic Area and not transferred outside the EU. Candidates have rights regarding their personal data including access, correction, deletion, and complaint to supervisory authorities.