
Capital.com · Warsaw
We are a leading trading platform expanding to the four corners of the globe. Our top-rated products have won prestigious industry awards for their cutting-edge...
We are a leading trading platform expanding to the four corners of the globe. Our top-rated products have won prestigious industry awards for their cutting-edge technology and seamless client experience. We deliver only the best, so we are always in search of the best people to join our ever-growing team.
We seek a skilled and experienced Business Continuity and Resilience Specialist to join our team to make sure we stay operational when things go wrong, across every market, entity, and time zone we operate in.
Shape the future of cyber security in Atlantic Container Line AB Atlantic Container Line AB (ACL), part of the Grimaldi Group, is the world's oldest continuously operating container line and has been connecting Europe and North America since 1967. Operating the world's largest combination container and Roll-on/Roll-off (RORO) vessels, ACL is a key link in global trade. As our business continues to evolve, information security plays an increasingly vital role in supporting operational resilience, customer trust and regulatory compliance. We are now looking for our first in-house Chief Information Security Officer (CISO) to lead the next phase of our security journey. The opportunity This is a unique opportunity to build and shape the information security function within an international organization operating critical infrastructure and global supply chains. As CISO, you will own and drive ACL's information security agenda, providing strategic leadership while also taking a hands-on role in developing governance, processes and security capabilities. You will partner closely with executive leadership, internal stakeholders and external partners to establish a modern, risk-based approach to security that supports both business growth and regulatory requirements. You will play a key role in ensuring compliance with NIS2 and other relevant frameworks, while helping the organization strengthen its cyber resilience, security culture and overall maturity. Joining ACL at this stage means you will not be starting from scratch. Foundational work has already been established together with experienced external partners, providing you with a solid platform from which to further develop and embed security across the business. Key responsibilities: Lead and continuously develop ACL's information security strategy and roadmap. Drive implementation and ongoing compliance with NIS2, GDPR and related regulatory requirements. Establish and maintain policies, governance frameworks, risk management processes and security controls. Act as a trusted advisor to senior management and business stakeholders on security, risk and compliance matters. Coordinate security initiatives across ACL and within The Grimaldi Group. Manage relationships with external security partners, auditors and regulatory bodies. Support incident response, business continuity and cyber resilience planning. Drive security awareness and help build a strong security culture throughout the organization. Who you are You are a security professional who enjoys creating structure, influencing stakeholders and translating complex security requirements into practical business solutions. You combine strategic thinking with a pragmatic, hands-on approach and are comfortable working across organizational boundaries. You may already hold a CISO position or be ready to take the next step from a senior information security, cyber security or governance role. We believe you have: Several years of experience within information security, cyber security, governance, risk management or compliance. Good understanding of regulatory and security frameworks such as NIS2, ISO 27001, NIST or similar, as well as GDPR. Experience leading projects and driving initiatives across multiple stakeholders. Ability to communicate effectively with both technical specialists and business leaders. Experience working in an international environment. Professional proficiency in both English and Swedish. The following are considered advantageous: Experience from critical infrastructure, transportation, logistics or other regulated industries. Knowledge of cloud environments such as Microsoft Azure or Oracle Cloud. Relevant certifications such as CISSP, CISM, CRISC, ISO 27001 Lead Implementer or similar. Why ACL? At ACL, you'll have the opportunity to make a genuine impact in a business that operates globally and plays an important role in international trade. You'll work closely with senior leadership, influence strategic decisions and help shape the future of security within a company where your expertise will matter from day one. We offer a collaborative international environment, short decision-making paths and the opportunity to build something lasting within a respected global organization. The position is based in Gothenburg and involves close collaboration with colleagues across Europe and North America. Some travel may be required. Recruitment process ACL is partnering with Ants Tech Recruiters in this recruitment. You’re welcome to reach out to Gabriella Hagström at gabriella.hagstrom@ants.se if you have any questions. As we're entering the summer holiday period, we'll continue the recruitment process in the middle of August. We look forward to your application. About ACL Atlantic Container Line AB, headquartered in Sweden, is part of the Grimaldi Group of Naples, Italy. Since 1967, ACL has operated continuous weekly transatlantic container and Roll-on/Roll-off (RORO) services between Europe and North America, making it the world's longest continuously operating container line. ACL operates the world's largest combination container and RORO vessels, among the world's greenest ships. Purpose-built with 100% cell-guides for containers above and below deck, as well as 100% underdeck RORO stowage, they offer a unique combination of efficiency and flexibility. Designed to accommodate cargo of virtually any size or weight, ACL's vessels transport everything from containers and vehicles to boats, aircraft, construction and agricultural equipment, and other oversized project cargo. With corporate teams based across Sweden, the UK, Belgium, Germany and the US, ACL combines global reach with specialist expertise to support customers with some of the world's most complex transportation needs.
WHAT WE’RE ALL ABOUT: Any company can tell you about how they are a multi award winning, market leading business and yes, we are both of those things in the world of IoT connectivity! But we’re more than that. 🌍✨ Our mission? To make IoT management a breeze for any device, anywhere. With over 10 million IoT subscriptions active in 165 countries and direct partnerships with 50 mobile networks, we connect you to more than 750 networks worldwide, delivering unmatched value across the IoT connectivity chain. Innovation is in our DNA, and we have an insatiable hunger to ‘wow’! 🚀 While we may not always get it right, our drive to collaborate, innovate, and achieve top-notch customer satisfaction never wavers. We offer industry expertise, stellar service support, and the most flexible, resilient, and secure connectivity solutions on the market. Our expertise spans across various sectors, including industry, agriculture, healthcare, security, transport, utilities, and smart cities. IOT… A FANCY ACRONYM OR A SECRET CODE? The Internet of Things (IoT) is like the magical glue that keeps the world connected! 🌐✨ From ordering your favourite takeaway to the ANPR technology that helps you find a parking spot, IoT is everywhere—even if you don’t realize it. At Wireless Logic, we provide cutting-edge connectivity solutions and technologies to ensure a vast array of devices stay seamlessly connected. The role The company is seeking an experienced Lead Systems Engineer with extensive security and disaster recovery experience to provide technical leadership ensuring that Operating Companies (OpCos) implement and maintain effective security controls, disaster recovery (DR), and business continuity measures in line with Group policies. In addition to hands-on engineering responsibilities, this role includes team leadership and capability development, ensuring that local and central engineering teams are effectively guided, supported and aligned with Group strategy. This hands-on role will leverage strong systems engineering expertise to support local IT teams in defining, implementing, and rigorously testing Disaster Recovery plans, as well as enhancing defences against ransomware and other cyber threats. Key relationships Systems Engineers will work closely with the Group Infrastructure team, as well as local IT and operations teams in each operating company. They will collaborate with the CISO and wider security operations function to align infrastructure controls with group security strategy, provide technical guidance to application owners and platform specialists. Responsibilities include: * Security Engineering & Compliance * Oversee and coordinate security engineering activities across teams, ensuring consistent standards and effective delivery. * Guide OpCos in the deployment, configuration, and optimisation of security tools (e.g. Entra, MFA, SSO, Endpoint protection, Network segmentation, PAM, SIEM, Backup and recovery solutions). * Review local and cloud implementations to ensure technical alignment with Group security standards, toolsets, monitoring and reporting requirements. 4Assist in incident response activities, particularly ransomware scenarios, ensuring containment and recovery are technically robust. * Disaster Recovery & Business Continuity * Partner with local IT teams to design and document DR plans for critical business systems. Across a wide range of cloud and on-premises infrastructure, including Windows, Linux, Containerised and Cloud native environments. * Lead technical DR testing exercises, including Tabletop, system failover, systems and data recovery, and backup validation. * Analyse test outcomes, identify gaps, and provide practical remediation guidance. * Ensure recovery time objectives (RTOs) and recovery point objectives (RPOs) are understood, realistic and met. * Coordinate cross-team DR readiness efforts and ensure accountability for remediation actions. * Technical Support & Collaboration * Act as a technical mentor to local IT teams, providing engineering-level guidance on system hardening, patch management, and resilience strategies. * Provide day-to-day leadership to engineers, including task prioritisation, workload management and technical oversight. * Conduct knowledge sharing sessions and promote best practices across teams. * Develop standardised runbooks and technical playbooks for ransomware prevention, response, and recovery. * Continuous Improvement * Work with the CISO and Security team to track emerging security threats and recommend technical improvements to security and resilience tooling. * Support the integration of cloud-based and on-premises systems into DR strategies. * Provide input into Group-wide security awareness initiatives, ensuring technical accuracy. Expertise Required * Strong background as a Systems Engineer / Infrastructure Engineer with significant exposure to IT Security and resilience. * Demonstrated experience leading or mentoring systems engineering teams in a technical environment * Proven track record in designing and testing Disaster Recovery solutions across multiple technology stacks. * Familiarity with backup solutions, replication technologies, and high-availability architectures. * Knowledge of cybersecurity frameworks (ISO 27001, NIST, CIS Controls) and security tooling (EDR, SIEM, vulnerability management). * Excellent troubleshooting and problem-solving skills in complex environments. * Strong interpersonal skills, able to engage effectively with global teams. * Proven experience with zero trust security models in hybrid environments, least privilege enforcement, Privileged Access Management (PAM), * Strong knowledge of networking (routing, firewalls, segmentation, VPN, DNS, load balancers). * Practical expertise in AWS and/or Azure platforms, IAM, and cloud security controls. * Administration and hardening of VMware vSphere infrastructure. * Hands-on experience with Kubernetes. * Proficiency with Windows Server and Linux. * Advanced scripting and automation skills (PowerShell, Python, Bash, Terraform, Ansible). * Experience managing M365/Entra ID, SSO, MFA, and conditional access. * Experience with vulnerability management using tools such as Tenable.io. * Experience working in multi-national environments with diverse technical standards. * Knowledge of telecoms or IoT-related infrastructure. Behaviours Successful candidates will demonstrate a hands-on, problem-solving mindset, with a strong focus on delivering secure and resilient systems. They will be collaborative team players, able to work effectively with colleagues across geographies and technical disciplines. A proactive approach to automation, standardisation, and continuous improvement is essential, along with a willingness to challenge legacy practices and adopt modern, secure alternatives. Above all, they will act with integrity and accountability, ensuring that security and resilience remain at the forefront of their work. Why work with us? * The opportunity to work for an entrepreneurial Company * Full training, ongoing support, and the tools you need to grow and develop in your role * We are a company with a heart and who genuinely values and respects its employees * A key role in delivering and strengthening resilience across a global organisation. * Opportunities to drive critical disaster recovery and security initiatives across multiple regions. * Exposure to complex hybrid cloud and telecoms infrastructure Who are we? A new thing, device or asset is connected to Wireless Logic’s cellular platform every 18 seconds of every day. And today, Wireless Logic Group has over 6 million IoT SIM subscriptions active in 165 countries, with collaborative partnerships that provide reach into more than 750 global networks. The group is entirely customer and market-driven, meeting customers where they are to help them innovate by providing expert service and the most flexible, resilient, and secure connectivity solutions in the market. Wireless Logic’s purpose-built IoT connectivity platforms connect (globally and locally) across multiple mobile networks and technologies to give customers a single management window for their assets. It provides the ultimate connectivity, control, and security. Wireless Logic Group is backed by Montagu Private Equity, one of the world’s leading private equity-backed investors, giving Wireless Logic Group unrivalled financial strength. Where do I apply? If this sounds like a role you are interested in please submit your application directly through our website including your CV. Wireless Logic LTD are an equal opportunities employer and positively encourages applications from suitably qualified and eligible candidates regardless of sex, race, disability, age, sexual orientation, transgender status, religion or belief, marital status, or pregnancy and maternity. We know the world has changed, and we want to offer our employees the chance to collaborate at our unique office spaces, whilst enjoying the convenience of working from home. We've adopted a hybrid working approach to give more flexibility on where and how we work. You'll find out more about what this means for this role during the recruitment process, but we are currently excited to have our employees experience our office culture as much as possible. Wireless Logic Group unites and brings people together. We accomplish this when we lead with a lens of diversity, equity, and inclusion in everything we do. As a global company that drives culture we aim to reflect the world’s diverse voices both internally and externally to ensure success in our mission. By applying for this role, you are consenting for us to hold and process your data in compliance with the General Data Protection Regulations. If you have any questions or wish to exercise your right to access, erase or restrict the holding or processing of your data please contact us (recruitment@wirelesslogic.com) and we will respond to your query as soon as possible.
WHO WE ARE ABOUT STRIPE Stripe is a financial infrastructure platform for businesses. Millions of companies—from the world's largest enterprises to the most ambitious startups—use Stripe to accept payments, grow their revenue, and accelerate new business opportunities. Our mission is to increase the GDP of the internet, and we have a staggering amount of work ahead. That means you have an unprecedented opportunity to put the global economy within everyone's reach while doing the most important work of your career. ABOUT THE TEAM Bridge Building S.A. (BBSA) is the Luxembourg regulated entity of Bridge, a Stripe company. We operate as an EMI and future CASP in one of Europe's most demanding regulatory environments (CSSF, DORA, MiCA). BBSA is building a local regulated platform powered by a global-first technology model. WHAT YOU'LL DO In this context, we're looking for an IT GRC Analyst to act as the bridge between strict European regulations and high-velocity global engineering. This role is the control and risk right hand of the Bridge Global CISO. While our global teams build the tech, you ensure it is compliant, resilient, and audit-ready. You'll translate requirements like DORA and MiCA into tangible IT controls, oversee third-party risks, and maintain the integrity of our governance framework. This is not a tick-the-box compliance role. It is an operational position for a professional who understands technology well enough to govern it effectively. You'll have high visibility, owning the frameworks that allow us to scale securely. RESPONSIBILITIES IT governance and risk management • Maintain and evolve the IT Risk Register, ensuring risks are identified, assessed, and treated in line with the company's risk appetite. • Drive the local implementation of the DORA (Digital Operational Resilience Act) framework, including ICT risk management and incident classification. • Bridge the gap between technical reality and policy by drafting, reviewing, and updating IT policies and procedures. • Perform periodic control testing to ensure global engineering practices align with local regulatory requirements. • Act as the primary support to the local Head of IT. Third-party risk management (TPRM) • Support ICT due diligence and risk assessments of critical vendors and service providers, while assisting with Developer and Customer Oversight. • Monitor service level agreements and performance metrics of critical vendors, challenging performance where necessary. • Act as the primary support to the outsourcing manager regarding technical vendor oversight. Access governance and control (IAG) • Oversee the identity and access governance strategy, including adherence to Segregation of Duties, principle of least privilege, and others. • Conduct periodic user access reviews for critical systems. Regulatory compliance and audit readiness • Act as the primary liaison for internal audit regarding IT topics. • Prepare technical inputs and evidence for CSSF notifications and regulatory reporting. • Monitor compliance with GDPR and data privacy controls (e.g., DLP oversight, data residency). • Coordinate business continuity (BCP) and disaster recovery (DR) testing documentation and reporting. Incident governance • Oversee the IT incident management process to ensure proper classification, reporting, and root cause analysis (RCA). • Ensure major incidents are reported to regulators within mandated timeframes, in collaboration with Compliance. WHO YOU ARE MINIMUM REQUIREMENTS * Bachelor's or Master's degree in Information Systems, Cybersecurity, or Business Administration, with a strong IT focus. * 3–6 years of experience in IT audit, IT risk, GRC, or information security. • High professional fluency in English. PREFERRED QUALIFICATIONS * Experience in a regulated sector (Banking, Fintech, or Insurance). * Experience at a large-scale public accounting firm in IT risk advisory. * Experience with CSSF circulars, EBA guidelines, or DORA. * Strong understanding of ISO 27001, NIST, or COBIT. * Understanding of cloud fundamentals (AWS).