Senior Consultant Cyber Compliance and Governance

Apply now »

Date: Jan 17, 2023

Location: Kraków, PL, 30-302 Łódź, PL, 90-118 Poznan, PL, 61-725 Warszawa, PL, 00-839

Company: GFT Technologies SE


As a Senior Consultant Cyber Compliance and Governance you will be a part of an international team supporting the client who incorporates the most disruptive payment businesses, creating one of the world’s largest private fintech.


Our Client operates in three business areas:

• Merchant Solutions, for merchants and acquirers

• Trade Solutions, for corporates and SMEs

• Consumer Solutions, digital products, and services for individuals


You will be a part of Merchant Solutions team responsible for building a global, open merchant payment platform to create opportunities for merchants and acquirers worldwide.



Engagement Scope:


  • You will assist cyber compliance and governance team in ensuring our Client’s compliance with its information security policies and globally accepted information security standards.
  • You will be responsible for providing assistance in maintenance and improvement of the compliance-related process landscape and the implementation of a supporting tool set which is in line with relevant international and national standards.
  • Your primary focus of the engagement will be PCI DSS and PCI PIN certification.
  • Perform Payment Card Industry Data Security Standard (PCI DSS) 3.2.1 Certificate readiness assessment and assist with the documentation
  • PCI PIN (Personal Identification Number) Gap analysis and review / implement the necessary controls
  • Identify the prerequisites for cloud implementation, review and propose Cloud Reference Architecture (CRA), AWS and Azure preferred



Skills & Experience:


  • Min. 4-6 years of experience in a similar senior/expert consultant position
  • Good understanding of Security information and Event Management (SIEM), Intrusion Detection and Prevention System (IDPS), micro-segmentation, End Point Detection and Response (EDR), container security, vulnerability scanning, penetration testing, A/V etc.
  • Good understanding of firewall rules (Palo Alto ASA and Checkpoint preferred)
  • Experience in performing network, operating system, database and application security testing/reviews and consulting
  • Very good communication skills in English
  • Soft skills:

           - Exude high degree of teamwork, open-mindedness, adaptability to fast-paced environment and respect for diversity

           - Ability to work in multicultural environment

           - Ability to present to higher management



Nice to have:


  • Previous experience of working in Fintech or Financial organization
  • Good German and Spanish language skills
  • PCI DSS ISA/ QSA, CISSP, Cloud Security Alliance (CSA) and security certificates from Cloud Service Providers (CSP)
  • Expertise in vulnerability management and system hardening
  • Senior/expert level professional experience on securing components on infrastructure and application layer
  • Experience with complex network environment running with high availability in active layout



We offer you:


  • Working in a highly experienced and dedicated team
  • Competitive salary and extra benefit package that can be tailored to your personal needs (private medical coverage, sport & recreation package, lunch subsidy, life insurance, wellbeing sessions, etc.)
  • Hybrid/remote work based on contract of employment or B2B contract
  • On-line training and certifications fit for career path
  • Free on-line foreign languages lessons
  • Access to e-learning platform
  • Regular social events
  • Ergonomic and functional working space with 2 monitors (you can also borrow monitors for your home office)