Current jobs related to Security Risk and Compliance Lead @ - Warszawa, Mazovia - Asana

  • Senior Cyber Security GRC Specialist @

    2 weeks ago

    Warszawa, Mazovia, Czech Republic Bayer Full time

    Qualifications & Competencies (education, skills, experience):Educational Background: A Bachelor's or Master's degree in information technology, cybersecurity, computer science, or a related field is essential, though relevant working experience may be considered an equivalent3+ years of experience in cyber security, previous experience in a GRC role highly...

  • Cyber Security Governance Position

    2 weeks ago

    Warszawa, Mazovia, Czech Republic beBeeCybersecurity Full time 4,200,000 - 8,700,000

    Lead Cyber Security Governance SpecialistThis is a senior-level position responsible for developing, implementing and managing cyber security governance initiatives within an organization. The ideal candidate will have experience in risk management, threat modeling and risk assessment techniques.Main Responsibilities:Develop and implement governance...

  • Cyber Security Professional

    2 weeks ago

    Warszawa, Mazovia, Czech Republic beBeeCybersecurity Full time €89,445 - €105,400

    Senior Cyber Security GRC Specialist Job DescriptionWe are seeking a highly skilled Senior Cyber Security GRC Specialist to join our team. The ideal candidate will have extensive experience in developing and implementing cyber security Governance, Risk, and Compliance (GRC) initiatives.Key Responsibilities:Cyber Security Governance: Develop and implement...

  • Sr. Cyber Security GRC Specialist @

    2 weeks ago

    Warszawa, Mazovia, Czech Republic Bayer Full time

    Educational Background: A Bachelor's or Master's degree in law, information technology, cybersecurity, computer science, or a related field is essential, though relevant working experience may be considered an equivalent.[3+] years of experience in cyber security, previous experience in a GRC role highly desiredProficiency in various cybersecurity tools and...

  • Senior Credit Risk Modeler

    2 weeks ago

    Warszawa, Mazovia, Czech Republic beBeeQuantitative Full time €80,000 - €120,000

    Role OverviewWe are seeking a senior professional to lead our credit risk modeling initiatives. The ideal candidate will possess a strong background in financial institutions or consulting/audit firms, with a degree in mathematics, physics, computer science, or a related quantitative field.Minimum 5 years of experience in credit risk modeling is...

  • Cloud Security Specialist

    2 weeks ago

    Warszawa, Mazovia, Czech Republic beBeeSecurity Full time €60,000 - €85,000

    Job Title: Cloud Security SpecialistWe are seeking a skilled Cloud Security Specialist to enhance our cloud security posture and ensure compliance across multiple cloud environments.About the Role:This is an exciting opportunity to work on implementing and integrating security and compliance tools across various cloud platforms and internal systems.Key...

  • Chief Secure Software Developer

    2 weeks ago

    Warszawa, Mazovia, Czech Republic beBeeSecurity Full time 800,000 - 1,200,000

    Secure Product Development EngineerWe're building the future of digital banking and embedded finance by delivering innovative, secure solutions for mobile and web platforms.Develop and maintain secure products from the ground up.Collaborate closely with engineering teams to design and develop secure solutions.Perform thorough threat modeling and...

  • DevOps integration on Multicloud security

    2 weeks ago

    Warszawa, Mazovia, Czech Republic Orange Polska Full time

    2+ years' experience with GCP or Azure or AWS hypescalersMaster orchestration and deployment tools such as Kubernetes, Docker, Terraform, Ansible, Git, repository and artifact management, etc.Good knowledge and hands on experience using API Gateway, Apigee, Kong, NodeJS (Typescript), et API IDP ecosystemHave programming skills with experience using languages...

  • DevOps integration on Multicloud security

    1 week ago

    Warszawa, Mazovia, Czech Republic Orange Polska Full time

    2+ years' experience with GCP or Azure or AWS hypescalersMaster orchestration and deployment tools such as Kubernetes, Docker, Terraform, Ansible, Git, repository and artifact management, etc.Good knowledge and hands on experience using API Gateway, Apigee, Kong, NodeJS (Typescript), et API IDP ecosystemHave programming skills with experience using languages...

  • Senior Technology Risk Assurance Specialist

    2 weeks ago

    Warszawa, Mazovia, Czech Republic beBeeAudit Full time 1,152,000 - 1,536,000

    Job Title:Information Assurance ManagerA highly skilled Information Assurance Manager is required to lead complex audits of technology infrastructure, ensuring compliance with audit standards and regulations. The successful candidate will work closely with business leaders to identify and address emerging risks.Key Responsibilities:Plan and deliver audit...

Security Risk and Compliance Lead @

3 weeks ago

Warszawa, Mazovia, Czech Republic Asana Full time

About you

  • 5+ years of experience in Governance Risk and Compliance, with a focus on risk assessments and risk management.
  • Demonstrated understanding of security compliance frameworks and audits (e.g., SOC 2, ISO 27001, PCI DSS, NIST, HIPAA, FedRAMP, etc.).
  • Experience with enterprise SaaS applications, cloud infrastructure, modern software engineering practices and tools, databases, operating systems, secure network design, and public cloud models such as AWS
  • Experience performing third-party vendor security reviews and due diligence processes
  • Proven ability to drive operational process improvements and develop metrics for tracking success.
  • Excellent communicator and influencer, with the ability to translate complex security and compliance requirements to both technical and non-technical stakeholders.

At Asana, security is foundational to our mission of helping teams work together effortlessly. Our security team protects Asana's employees, users, and customers by proactively addressing threats, ensuring compliance with legal and regulatory requirements, and fostering a culture of security throughout our product and operations. We are a team of security engineers and risk and compliance practitioners who build innovative safeguards and collaborate across the organization to build and maintain trust at scale.

As the Security Risk and Compliance Lead at Asana, you'll play a critical and high-impact role in building and maintaining trust with Asana's global customers. You will lead and continuously improve our vendor risk assessment and security risk management programs, ensuring we maintain a strong security posture and meet both compliance requirements and customer expectations.

This is a highly cross-functional role where you'll partner closely with Legal, Privacy, Finance, R&D, and other key stakeholders. You'll help evolve our programs with a strategic, risk-based mindset—balancing operational excellence with agility as we grow and scale.

This role is based in our Warsaw office with an office-centric hybrid schedule - in-office days are Monday, Tuesday, and Thursday. 

We offer a Contract of Employment (UoP) for our employees in Poland.

At Asana, we're committed to building teams that include a variety of backgrounds, perspectives, and skills, as this is critical to helping us achieve our mission. If you're interested in this role and don't meet every listed requirement, we still encourage you to apply.

What we offer

  • Generous, transparent and fair compensation system (base salary and generous Restricted Stock Unit for Asana Inc.)
  • Contract of Employment (with 50% tax deductible costs for author's rights usage for Engineers) 
  • Health insurance with dental and travel coverage (Lux Med)
  • Lunch catering on the days that you work from the office
  • Career growth budget
  • Home office setup budget
  • Gym/Fitness reimbursement
  • Fertility healthcare and family-forming support with Carrot
  • Mental health support in Modern Health
  • Group life insurance
  • MacBooks with all necessary accessories

For this role, the estimated base salary range is between 22 000  - 28 000 PLN gross monthly on the contract of employment (UoP). The actual base salary will vary based on various factors and individual qualifications objectively assessed during the interview process. The listed range above is a guideline, and the base compensation range for this role may be modified.

Our total compensation consists of base salary and equity (RSUs). 

About us

Asana helps teams orchestrate their work, from small projects to strategic initiatives. Millions of teams around the world rely on Asana to achieve their most important goals, faster. Asana has been named a Top 10 Best Workplace for 5 years in a row, is Fortune's #1 Best Workplace in the Bay Area, and one of Glassdoor's and Inc.'s Best Places to Work. After spending more than a year physically distanced, Team Asana is safely and mindfully returning to in-person collaboration, incorporating flexibility that adds hybrid elements to our office-centric culture. With 11+ offices all over the world, we are always looking for individuals who care about building technology that drives positive change in the world and a culture where everyone feels that they belong. 

,[Vendor Risk Management: Own and operate Asana's vendor risk management program, including performing due diligence for new vendors, ongoing monitoring and reporting, and reviewing vendor contracts for security and compliance requirements., Security Risk Management: Support the execution of periodic assessments across the organization to identify, evaluate, and track risks—driving mitigation and treatment efforts with business and technical owners., Risk Register Maintenance: Assist in maintaining the central security risk register to promote and drive accountability across the organization., Compliance Audit Support: Partner with internal teams to support annual compliance audits such as SOC 2 and ISO 27001, providing evidence and program documentation as needed., Policy Management: Draft, update, and maintain security policies, standards, and procedures that align with evolving business needs and industry best practices., Metrics: Define, track, and report on key metrics that demonstrate program effectiveness and operational excellence—using insights from data to continuously refine and improve risk and compliance processes.] Requirements: risk management, Security compliance, Audits, ISO2700, NIST, Public cloud, AWS Additionally: Private healthcare, Mental health care, Sport subscription, Training budget, Coaching, Long-term savings or retirement plans, International projects, Free coffee, Canteen, Modern office, No dress code, In-house trainings, In-office culinary options, Bike parking, Shower, Free snacks, Free beverages, Free lunch, Startup atmosphere, Free breakfast.