Role of Information Security Officer comprises of two main activities within the company entities in Slovakia, Hungary, and Czech Republic, covering governance and assurance of Information Security and assurance for Operational Resilience and Protective Security.

Information Security:

• Providing governance to the service and business owners to plan, coordinate, and implement & maintain the company Information Security Framework
• Ensuring effective execution of the Information Security (IS) risk management framework including assessment of mitigation plans and controls
• Overseeing implementation of security standards, procedures, and guidelines for multiple platforms and system environments based on security policies and OE requirements
• Enabling performance of information security assessments (at network, OS, and application level) and interpret information security testing/scanning results
• Investigating and recommending corrective actions for security incidents to the organization and stakeholders
• Developing, tracking, and reporting on Key Risk Indicators (KRIs) for information security

Protection & Resilience:

• Coordinates the implementation and maintenance
• Collecting and coordinating Resilience demands coming from a customer ITSCM function (e.g. DR testing)
• Reporting status of entity Protection & Resilience
• Monitoring and reporting on incidents with crisis potential; including planning and introduction of mitigating actions