Senior Security Specialist - Unilabs

Náplň práce, právomoci a zodpovednosti:

At Unilabs we are looking for an experienced professional to lead cybersecurity governance and compliance across the region. In this role, you will ensure our organization meets regulatory requirements while supporting business goals and protecting information assets.

Key Responsibilities

• Act as the main point of contact for cybersecurity compliance and governance in the region
• Ensure alignment with regulatory frameworks and standards (e.g. ISO 27001, NIS2, local cybersecurity laws)
• Manage and support internal and external audits, ensuring readiness and successful outcomes
• Maintain and update security policies, standards, and procedures in line with regulatory changes
• Collaborate with business teams to embed security and compliance into daily operations
• Support client and tender security requirements, providing clear and structured responses
• Lead security due diligence during mergers & acquisitions and support post-acquisition integration
• Oversee risk management processes, including identification, assessment, and mitigation of risks
• Promote security awareness and compliance culture through trainings and initiatives
• Coordinate incident management and reporting, ensuring alignment with regulatory obligations
• Contribute to business continuity and disaster recovery planning

What We Are Looking For

• Experience in information security governance, risk, or compliance (GRC)
• Good knowledge of security standards and regulations (ISO 27001, NIS2, etc.)
• Experience with audits, certifications, and regulatory environments
• Ability to work with both business stakeholders and technical teams
• Strong communication skills and a proactive, structured approach
• Ability to work independently and influence decisions

What We Offer

• A strategic role with regional impact
• Opportunity to work with international regulations and frameworks
• High visibility and collaboration with senior management
• The chance to shape security governance and compliance practices

Zamestnanecké výhody, benefity:

* Contributions to a supplementary pension plan
* Optional benefits package / Cafeteria and Multisport Card
* Loyalty and anniversary bonuses
* Support for education and professional development
* Annual salary adjustment (merit review)
* Educational courses and training
* Meal vouchers/meal allowance
* Psychological, financial, and legal counseling – Employee Assistance Program
* Sick Days

Požiadavky na zamestnanca:

· Key Requirements & Qualifications

o Experience: 5+ years in information security, with substantial expertise in IT infrastructure, AD, or systems administration.

Certifications:

o CISSP: Regarded as the "gold standard" for management-focused senior roles.

o CISM (Certified Information Security Manager): Focuses on management.

· Technical Skills

o Cloud Security: Knowledge in AWS, Google Cloud, or Microsoft Azure security frameworks.

o Incident Response & Risk Management: Proficiency in Risk Management Frameworks (RMF), Governance, Risk, and Compliance (GRC), and Threat Modeling.

o Technical Mastery: Understanding of networking protocols, firewalls, SIEM tools.

o System Knowledge: Deep understanding of Windows, Linux environments.

· Soft Skills

o Communication: Ability to explain complex technical risks to non-technical staff and executives.

o Leadership: Experience mentoring junior analysts or directing security initiatives.

o Analytical Thinking: Critical problem-solving and proactive threat detection capabilities.

· Typical Responsibilities

o Conducting advanced penetration testing and vulnerability scans.

o Ensuring compliance with standards (e.g., NIST, STIGs, ISO 27001).

o Managing vendor security and cloud security posture.

o Developing and maintaining security documentation.