Regional Information Security Officer - Central Europe
WSP is one of the world’s leading engineering and professional services firms. Our trusted professionals are united by the common purpose— to create positive, long-lasting impacts on the communities.
WSP is a world-leading engineering company, specialising in the environment, energy, infrastructure, transport and buildings.
We have a clear vision of how we want to help make the world a better place, giving back to communities and supporting what is truly important for our future
Imagine a better future for all of us and a better future for you. With us you can!
The Information Security Office (ISO) oversees the implementation and maintenance of WSP’s information security framework, covering governance, policies, tools, technologies, and employee training to safeguard company and client data.
The Regional Information Security Officer (RISO) reports to the Business Information Security Officer and ensures the framework is applied within their region. While primarily internal, the role may involve engaging with clients and third parties.
This senior management role requires expertise in IT security, risk management, regulatory compliance, cloud technology, IT operations, and third-party security management.
WHAT DOES THIS ROLE INCLUDE
The Regional Information Security Officer collaborates with the Business Information Security Officer, regional leadership, and ISO peers to ensure the effective delivery of information security initiatives. This includes defining and implementing the regional information security strategy, fostering senior stakeholder engagement, and implementing and managing an ISO27001-aligned Information Security Management System and associated security governance framework. Key responsibilities include coordinating risk management, executive reporting, and participating in decision-making forums requiring security input.
The role oversees the identification and mitigation of security risks, embedding risk management practices into business processes. It drives security awareness by delivering training programs and promoting a culture of security across all organizational levels. The position also leads security evaluations for acquisitions, mergers, integrations, and divestments, ensuring seamless incorporation into WSP’s security ecosystem.
Additional responsibilities include managing client security requirements, maintaining a robust vendor risk management program, and developing and maintaining an incident response plan. The officer monitors and reports security metrics to senior leadership, ensuring continuous improvement and alignment with business objectives.
Leadership and People
The RISO demonstrates leadership, independence, and sound judgment in managing information security responsibilities. They support hiring, training, and coaching staff while fostering collaboration with team members and business partners to meet organizational and client needs.
This role requires strong problem-solving, project management, and communication skills, with the ability to interpret regulations and align strategies with business objectives. Flexibility for international calls, occasional travel, and working with diverse teams is essential.
The officer is expected to manage complex decisions, present strategies to senior management, and adapt to evolving business, technology, and risk landscapes with professionalism and integrity.
Required:
- Experience of roles in Information Security, IT risk, or IT audit.
- Bachelor's degree in computer science, information management, or equivalent; professional certifications (e.g., CISSP, CISM, CISA, CGEIT) preferred.
- Familiarity with security and IT technologies (e.g., encryption, firewalls, cloud computing, networking, intrusion prevention).
- Understanding of enterprise IT threats, vulnerabilities, and security best practices.
- Experience with IT/IS governance frameworks (e.g., COBIT, ITIL, NIST-CSF, ISO 2700x) and compliance/audit processes.
- Proficiency in risk management, including analysis, mitigation, and monitoring.
- Knowledge of information security laws and regulations relevant to WSP.
- Can we include good written and spoken English here?
Preferred:
- Advanced degree in IT, Computer Science, Engineering, or related field.
- MBA or equivalent advanced business degree.
- Knowledge of other European languages e.g. French, German, Spanish would be advantageous.
WHAT YOU WILL LIKE ABOUT US:
- A work environment inspired by diversity, driven by inclusion.
- Our flexible work policy - We recognize the importance of work-life balance and encourage you to find your own.
- WSP is concerned with making the world around us better, including the environment, transportation infrastructure, buildings, and land use.
- Excellent career prospects. We are growing rapidly and every day we try to surpass ourselves. We are open to your ideas and want to try new things. We have an environment that invests in your development and training.
- WSP embraces a culture of collaboration with peers who stand out for their expertise.
- Come and discover our fantastic team!
OUR RECRUITMENT PROCESS:
1. Telephone interview: We'll start with a telephone interview to get to know you better and discuss your experience.
2. Business Leader Interviewer: You will meet with our Technical team and the department manager to assess your technical and cultural skills.
3. Interview with the Business Unit Director: A meeting with the Business Unit Director to discuss your potential role and our strategic vision.
ABOUT US:
When considering a career, it is crucial to work for a company that aligns with your values and goals, a place where you can fit in.
We are one of the world's leading engineering and professional services firms. Our employees share a common goal of making a positive and lasting impact on the communities we serve through a culture of innovation, integrity, and inclusion.
Are you hesitating to run? Do!
We pride ourselves on promoting diversity, equal opportunities and professional integration within our teams, and we are convinced that our differences and an inclusive work environment contribute to our development. All applications will be carefully evaluated.
#WeAreWSP
#LI-DA1
- Locations
- Warsaw
- Remote status
- Fully Remote
Regional Information Security Officer - Central Europe
WSP is one of the world’s leading engineering and professional services firms. Our trusted professionals are united by the common purpose— to create positive, long-lasting impacts on the communities.
Loading application form