Česká spořitelna
Chief Information Security Officer Engineering a IT Praha Více informací
Česká spořitelna, Mission, Kansas, United States
We are the largest bank in the Czech Republic, serving millions of clients and operating critical national infrastructure. We are the technology leader of Czech banking, building our future on modern technologies, cloud and AI. Security, resilience, and trust are at the core of our strategy.
We are looking for a Chief Information Security Officer (CISO)
- avisionary, technically hands-on leader who can navigate today’s most sophisticated threats while enabling fast and secure innovation. Mission of the Role:
The CISO with his security team defines, drives, and executes the enterprise-wide cyber and information security strategy. This role safeguards customer trust, protects critical systems, ensures compliance with banking regulations, and enables the bank’s digital and AI ambitions. Key Responsibilities:
1. Cyber Security Strategy & Architecture Develop and continuously evolve abusiness-aligned, cloud-ready cyber security strategy supporting digital and AI transformation. Define the target security architecture, including zero trust, secure cloud adoption, and modern identity-centric security models. Anticipate emerging threats and integrate the newest technologies into the bank’s security roadmap. Own the security risk framework and ensure it is embedded across the Enterprise. Maintain areal-time view of key risks, threat landscape, and control maturity. Define security policies, baselines, and standards, ensuring consistent enforcement. 3. Regulatory & Compliance Leadership Act as the main counterpart for regulators and auditors (GDPR, CNB, NIS2, DORA). Ensure the bank meets or exceeds all regulatory expectations in cyber resilience, incident reporting, and operational risk management. 4. Security Operations & Incident Response Oversee the SOC, threat hunting, detection engineering, and red/blue/purple-team capabilities. Lead end-to-end incident response and crisis management for major cyber events. Drive automation and intelligence-driven monitoring toreduce response times. 5. Identity, Access & Data Protection Define and oversee IAM, PAM, and modern access governance. Ensure strong data protection across classification, encryption, DLP, and privacy-by-design. Embed secure-by-design principles into software engineering, cloud adoption, and DevSecOps. Partner closely with CIO/CTO, architecture, and product teams toensure innovation is delivered securely without slowing delivery. 7. Third-Party & Supply Chain Security Define and enforce security requirements for vendors, cloud providers, and outsourced services. Oversee continuous security assessment of critical suppliers and ecosystems. 8. Culture, Awareness & Executive Communication Build astrong security culture across the bank. Run targeted training programs, phishing simulations, and awareness campaigns. Communicate security posture, key risks, and priorities clearly tothe Board and Executive Committee. 9. Organization, Talent & Budget Leadership Lead, grow, and inspire ahigh-performing security organization. Own and optimize the security budget, ensuring investments bring measurable risk reduction. Candidate Profile
Technical & Professional Experience Proven leadership experience as CISO or senior security leader in acomplex, regulated, high-availability environment. Hands-on understanding of cloud security (Azure/AWS/GCP), modern architectures, and emerging technologies (AI/ML, automation, zero trust). Strong knowledge of relevant legislation (GDPR, NIS2, DORA) and international security standards (NIST, ISO 27001, MITRE). Demonstrated success in building secure engineering practices and modern SOC capabilities. Leadership & Personal Attributes Pragmatic, technically fluent, and able tochallenge engineering teams at eye level. Visionary thinker able totranslate complex threats into actionable business decisions. Excellent communicator with strong stakeholder management, including regulators and board members. Able tobalance security, innovation, and business agility. Preferred Certifications CISSP, CISM, CISA, CCSP, or equivalent senior-level credentials Why Join Us
Lead and shape the cybersecurity strategy of the largest bank in the Czech Republic and be akey driver of acloud-enabled, AI-First transformation that protects millions of customers. Lead our IT Security team and transform it tothe strongest, most modern information and cyber security organizations in the region. Work directly with top executives and influence decisions at board level.
#J-18808-Ljbffr
- avisionary, technically hands-on leader who can navigate today’s most sophisticated threats while enabling fast and secure innovation. Mission of the Role:
The CISO with his security team defines, drives, and executes the enterprise-wide cyber and information security strategy. This role safeguards customer trust, protects critical systems, ensures compliance with banking regulations, and enables the bank’s digital and AI ambitions. Key Responsibilities:
1. Cyber Security Strategy & Architecture Develop and continuously evolve abusiness-aligned, cloud-ready cyber security strategy supporting digital and AI transformation. Define the target security architecture, including zero trust, secure cloud adoption, and modern identity-centric security models. Anticipate emerging threats and integrate the newest technologies into the bank’s security roadmap. Own the security risk framework and ensure it is embedded across the Enterprise. Maintain areal-time view of key risks, threat landscape, and control maturity. Define security policies, baselines, and standards, ensuring consistent enforcement. 3. Regulatory & Compliance Leadership Act as the main counterpart for regulators and auditors (GDPR, CNB, NIS2, DORA). Ensure the bank meets or exceeds all regulatory expectations in cyber resilience, incident reporting, and operational risk management. 4. Security Operations & Incident Response Oversee the SOC, threat hunting, detection engineering, and red/blue/purple-team capabilities. Lead end-to-end incident response and crisis management for major cyber events. Drive automation and intelligence-driven monitoring toreduce response times. 5. Identity, Access & Data Protection Define and oversee IAM, PAM, and modern access governance. Ensure strong data protection across classification, encryption, DLP, and privacy-by-design. Embed secure-by-design principles into software engineering, cloud adoption, and DevSecOps. Partner closely with CIO/CTO, architecture, and product teams toensure innovation is delivered securely without slowing delivery. 7. Third-Party & Supply Chain Security Define and enforce security requirements for vendors, cloud providers, and outsourced services. Oversee continuous security assessment of critical suppliers and ecosystems. 8. Culture, Awareness & Executive Communication Build astrong security culture across the bank. Run targeted training programs, phishing simulations, and awareness campaigns. Communicate security posture, key risks, and priorities clearly tothe Board and Executive Committee. 9. Organization, Talent & Budget Leadership Lead, grow, and inspire ahigh-performing security organization. Own and optimize the security budget, ensuring investments bring measurable risk reduction. Candidate Profile
Technical & Professional Experience Proven leadership experience as CISO or senior security leader in acomplex, regulated, high-availability environment. Hands-on understanding of cloud security (Azure/AWS/GCP), modern architectures, and emerging technologies (AI/ML, automation, zero trust). Strong knowledge of relevant legislation (GDPR, NIS2, DORA) and international security standards (NIST, ISO 27001, MITRE). Demonstrated success in building secure engineering practices and modern SOC capabilities. Leadership & Personal Attributes Pragmatic, technically fluent, and able tochallenge engineering teams at eye level. Visionary thinker able totranslate complex threats into actionable business decisions. Excellent communicator with strong stakeholder management, including regulators and board members. Able tobalance security, innovation, and business agility. Preferred Certifications CISSP, CISM, CISA, CCSP, or equivalent senior-level credentials Why Join Us
Lead and shape the cybersecurity strategy of the largest bank in the Czech Republic and be akey driver of acloud-enabled, AI-First transformation that protects millions of customers. Lead our IT Security team and transform it tothe strongest, most modern information and cyber security organizations in the region. Work directly with top executives and influence decisions at board level.
#J-18808-Ljbffr