Cyber Risk Assurance Manager

Tesco Business Services & Technology (TBST) and Tesco Technology were established in Budapest in 2019, supporting the Tesco retail business in Central Europe and the Tesco Group. TBST and Tesco Technology are part of our global business services and technology organisations within Tesco.

In the UK, Ireland, India, Hungary, Poland, the Czech Republic we operate to offer great value to our customers every day.

This is a fantastic opportunity to join Tesco’s Cyber Assurance team, part of the wider Cyber Risk function. The Cyber Assurance team is our second line in Technology working with stakeholders to ensure the implementation of proportionate controls to mitigate Tesco’s cyber risk exposure.

 Let’s {code} the together at {Tesco Technology}!

YOU WILL ENJOY WORKING WITH US BECAUSE WE CAN OFFER YOU:

• THE CLASSIC - You can look forward to being given your own laptop, a cell phone for personal use, 5 weeks of vacation, a meal allowance, a contribution to Multisport card, a 15 % discount on every purchase at Tesco, modern offices in Prague - Vršovice, free parking in the shopping mall Eden and much more...

• WELLBEING FIRST - We know how important the family is and that is why we offer a wide range of benefits focused on family support, such as maternity and paternity leave up to 100 % of salary, above-standard support for adoptive parents and foster parents. We also offer a gift basket for a newborn or adopted child and additional time off for important life events such as weddings, moving out, accompanying a first grader on the first day of school and much more...

• COMPANY CULTURE - We offer a flexible and friendly environment that allows you to be yourself and combine family life with work. We organize various community events several times a year, such as BBQs, summer games, St. Nicholas Day, or Christmas parties.

• VOLUNTEERING - Our mission is to give something extra to our customers, communities, and the planet every day. That's why we engage in multiple charitable activities that you can be a part of and take up to 2 days of paid time off to volunteer.

• SUPPORTING YOUR MIND, BODY AND LIFE - It doesn't matter if you prefer to release the endorphins while relaxing or at the gym. In the benefit system Cafeteria, you can choose how you want to take care of yourself. Free fruit in the workplace will encourage you to eat healthier. We organize themed lectures and workshops to support your personal well-being, focusing on your mental and financial health. For colleagues in difficult situations, we offer our Employee Assistance Program or financial support from our charity program, Tesco Angel.

• CAREER AND PERSONAL GROWTH - Are you eager for new challenges and don't like falling into a rut? Our dynamic environment of a large international company will allow you to discover a world of different career opportunities and your own self. We offer career advancement, training, online English classes, or an internal mentoring program.

• FLEXIBILITY – We know how important work life balance is. We respect the needs of our colleagues and offer them flexible start and finish at work and home office with a minimum of 3 days/week in the office.

Tesco is committed to celebrating diversity and everyone is welcome at Tesco. As a Disability Confident Employer, we’re committed to providing a fully inclusive and accessible recruitment process, allowing candidates the opportunity to thrive and inform us of any reasonable adjustments they may require.

If that sounds exciting, then we'd love to hear from you!

#LI-ACS1

The job requires to be based in/close to Prague, we work in hybrid mode.

This role requires written and verbal fluency in Hungarian and English.

KEY RESPONSIBILITIES:

• Maintain up-to-date understanding of information security-related laws and regulations such as NIS/NIS2 and GDPR, working closely with technology, business and legal stakeholders to ensure cyber risks are considered and managed at appropriate points of the systems lifecycle

• Plan and conduct cyber risk assessments for Tesco Group and its subsidiaries, including testing the design and operating effectiveness of key cyber controls

• Work with stakeholders in Technology and the business to agree appropriate actions to remediate control deficiencies

• Prepare high quality reports with clear recommendations to enable stakeholders to make timely risk-based decisions

• Monitor compliance with key controls and track status of next steps, reporting on progress to Technology senior management and key stakeholder

EXPERIENCE RELEVANT FOR THIS JOB:

• IT audit and/or IT risk management, with examples of managing cyber risk and IT compliance within an organisation
• Experience of assessing of security controls across a variety of technologies and products, recommending improvements where necessary
• Experience and knowledge of information security related laws and regulations such as NIS/NIS2 and GDPR
• Experience working with different security frameworks and standards such as ISO 27001, NIST, CIS

SKILLS RELEVANT FOR THIS JOB:

• Critical thinking with strong attention to detail and good organisational skills

• Strong written, verbal communication and presentation skills, working with all levels of seniority and disciplines within the organisation

• Able to build solid working relationships with peers as well as internal and external stakeholders

• At least one professional qualification such as CISA, CISM, CISSP or equivalent

• Fluent in Hungarian and English (verbal and written)