Sr Expert Information Security Compl.

Overview Of The CompanyOMV Petrom is the largest energy company in South-Eastern Europe, being active on every aspect of the energy value chain: from wells, producing oil and gas, to refining and fuels distribution, gas supply and power generation & supply. We provide the energy for day-to-day modern life: fuels for mobility, light and heat. We believe that we can only evolve with a diverse mix of employees and by ensuring a healthy work-life balance.Our Business | OMVPetrom.comAt OMV Petrom, we have a long tradition of responsible behavior towards employees, the environment and society. Sustainability means a focus on conducting the business responsibly, efficiently and in an innovative way. We are committed to create long-term value for the company and our stakeholders, while respecting the environment and, supporting the communities in which we operate.Sustainability | OMVPetrom.comYour tasksResponsible for developing and maintaining the methodology and principles of the IT Compliance Governance FrameworkSteer the implementation of related compliance requirements and ensure the definition of corresponding KPIs for measurementDefine the IT Compliance Governance roadmap for Borealis and lead the implementation of related activitiesTransform the Compliance Governance Framework methodology into an operational model executable via SNOW GRC/IRM module functionalityEnsure implementation of the IT Compliance Governance Framework during merger and integration initiativesConduct IT compliance audits across Borealis Group to assess control effectiveness and validate compliance and security maturity levelsManage Borealis external audits related to regulatory or legal frameworks such as ISO 27K, PCI-DSS, NIST, or NISGEvaluate the critical application landscape at Borealis Group level and maintain governance oversightYour profileBachelor ’s degree: ITRelevant professional experience: > 9 yearsExcellent knowledge of governance, auditing, and information security frameworks such as ISO 27001, ENISA, PCI-DSS, NIST, and NISGExtensive expertise in IT, Information Security, and IT GovernanceExcellent knowledge of the ServiceNow GRC/IRM moduleExcellent skills in drafting and maintaining regulatory documentationExcellent proficiency with the Microsoft 365 suiteAdvanced ability to identify, communicate, and define mitigation strategies for IT non-compliance issuesSolid understanding of project, process, and demand managementStrong interpersonal skills, with the ability to work independently, manage high-pressure situations, and collaborate effectively within cross-functional teamsFluency in English, with strong written and verbal communication skills tailored to both technical and non-technical audiencesLocation BucharestWhat OMV Petrom Can OfferLong weekend plans are always welcome - on Friday, our office hours end at 14.00.You can rely on a health insurance that covers medical treatment in a variety of private medical clinics.You can work from home, if the work activity allows.The number of your days off increase according to your work experience so that you'll enjoy more free time.We aim to make your vacation days happier, by paying each vacation day double.Are you a top performer? Your work can be rewarded each three months based on performance results.Additional days off and various financial support for different events like marriage, child birth, etc.Access to LinkedIn Learning and a variety of development programs.Do you prefer cars or bikes? We have free private covered parking.