CIS Compliance Officer

Recruitment process for this position and onboarding trainings are conducted online.


What do you need to start?

The Compliance Officer must have a very strong understanding of ISO/IEC 27001, ISO/IEC 27002 based audits, risk management, processes and methods of working and a high level of integrity and ethical standards.


Expected Competencies

  • Deep knowledge of security standards: ISO/IEC 27000 series, NIST, NIS
  • Knowledge of security baselines: CIS Controls Measures & Metrics, CIS benchmarks
  • Understanding of ITIL concepts
  • Vulnerability assessment
  • Risk management
  • Information Technology generalist across Microsoft and Cloud platforms and vendors

Expected Certifications (one or more)

  • GSEC
  • CISA
  • CISM
  • ISO/IEC 27001 Lead Auditor
  • ISO/IEC 27001 Lead Implementor

Expected Skills

  • Strong briefing and client managing skills
  • Experience in a service improvement environment
  • Competent negotiation skills and people management capabilities
  • Strong analytical problem-solving skills
  • Excellent customer relations skills to understand client/client representatives concerns and requirement
  • Attention to detail and quality work
  • High level of numeracy and literacy
  • Methodical approach
  • Confidence in dealing with senior managers and in the provision and presentation of complex and sensitive management information
  • Competency and understanding of automation


What duties will help you grow?

The Compliance Officer oversees both internal and external compliance, covering the Capgemini’s own policies and standards and requirements as well as those of customers and external bodies.
This role is focused on delivering guidance on security matters as well as providing a security service including improving effectiveness of security controls.



Security Assurance & Compliance
•    Manages and executes high profile audits through to the senior management level
•    Leads and conducts full contract compliance reviews
•    Lead 3rd party vendor management security program
•    Performs critical audits as a solo auditor and audit team leader
•    Evaluates the effectiveness of response and recovery programs
•    Provide assessments of the status of implementation and operating effectiveness of security controls
•    Identify security concerns that could affect the reliability, accuracy, and security of the Capgemini CIS data due to a weakness in security controls
•    Ensures international cybersecurity standards; guidelines and legislation are taken into consideration/adopted within Capgemini CIS GBL (e.g. ISO/IEC 27001, NIS, NIST)
•    Minimizes the impact of risk, audit, and compliance management process 
•    Managing dashboards and preparing reports



Security Consulting
•    Provides subject matter expertise (advice and recommendations) in security matters to bids, major accounts, business domains or functional areas
•    Works with senior managers and account teams to ensure that security compliance is set at the appropriate level
•    Provides coaching, training and facilitation in security compliance topics across the business


What have we prepared for you?

Space where you can develop yourself: 

  • Development programs, external courses, education & certificates co-funding, NEXT platform with free access to TED talks, Coursera materials, and virtual trainings: e.g. MS Azure, AWS, Google or ServiceNow. 

Our legendary atmosphere: 

  • We don’t have a rigid dress code, but what we do have are awesome communities and world– changing initiatives like Grant Program. We are a big company with unique atmosphere – we make friendships, share important moments, and simply… like each other!

A lot of benefits:

  • Home office: it’s your choice when you want to work from home. 
  • Private medical care which can be extended by a package of dental services purchased on preferential terms. 
  • Private life insurance which can be extended by oncology package purchased on preferential terms.
  • Referral bonuses for recommending your friends to Capgemini.
  • Access to Inspiro Audiobooks & MyBenefit (cinema tickets, Multisport and more). 
  • Offices in great locations, car leasing program, carpooling options and bicycle parking. 

Who are we?

Capgemini is a global leader in consulting, technology services and digital transformation. Our scope is wide. One of the teams is Projects & Consulting – part of a business unit called Cloud Infrastructure Services. 
Our employees say that in P&C team they are surrounded by awesome teammates who are ready to help professionally or just to drink a coffee with – no matter if it’s in person or virtually. You can count on your managers, willing to advise you, support you and give you a constructive feedback. There is a plenty of space to develop yourself, gain knowledge and exchange it for yours in a term of mutual partnership. 
Do you want to get to know us better? Watch a video:
Do you have any additional questions about our job offers? Check our Instagram (@capgeminipl) or visit our Facebook profile (Capgemini Polska).




Posted on:

May 6, 2021

Experience level:

Experienced Professional

Contract type:

Stałe zatrudnienie, pełny etat


Cyber Security