Information Security Officer

Microsoft, cloud and Infrastructure, some experience, consultant
Hungary

delaware International is growing, and so is our exposure to an evolving landscape of cyber threats and regulatory demands. As our Information Security Officer (ISO), you will be the leader of our operational security, acting as a crucial bridge between the CISO's strategic vision and our technical reality. Your mission is to translate security strategy into tangible, effective protection across our international IT landscape, with an initial focus on our central IT organization."

This is a long-term, internal security position focused on building and maturing our operational security capabilities—not a client-facing consulting role.

You will lead the central Security Operations (SecOps) stream and manage our external Managed Security Services Provider (MSSP). A significant part of our IT landscape is business-led, making your success dependent on influence, trust, and partnership rather than rigid enforcement. This is not a policing role; instead, you are expected to actively embed security into the daily work routines of all IT workstreams, ensuring sustainability and assurance through hands-on leadership and collaboration.

Key responsibilites

  1. ​​Key responsibilites:
  • Security Operations Leadership - Develop and maintain information security processes, standards, and operating procedures (SoPs) derived from global policies, ensuring they are clear, practical, and executable by technical teams.
  • Collaborate with engineers and operational stakeholders to align policy requirements with day-to-day security practices.
  • Lead and mentor the Security Operations (SecOps) stream, building it into a proactive, high-performing unit.
  • Manage and mature our MSSP partnership, ensuring high-quality service delivery, measurable outcomes, and alignment with business needs.
  • Drive process design, implementation, improvements and automation across SecOps domains focusing on vulnerability management, data leakage prevention (DLP), and identity & access management (IAM) to improve our overall security posture.
  • Coordinate the development and maintenance of incident response playbooks and facilitate regular tabletop exercises.

2. Security Implementation & Governance

  • Translate applicable risks, information security policies, and regulatory requirements (Privacy, NIS2, SOC2, DORA where applicable) into an actionable operational roadmap, ensuring alignment with business and technical execution.
  • Drive the implementation and continuous improvement of applicable ISO 27002 controls across IT, extending governance where relevant into business-led IT.
  • Oversee vulnerability management lifecycle (scanning, prioritization, remediation tracking, SLA adherence).
  • Coordinate internal and external audits, ensuring readiness and follow-up on findings.

3. Business Engagement & Risk Alignment

  • Act as a trusted security partner for IT and business-led technology teams across delaware’s entities, including Application and Development teams.
  • Build strong stakeholder relationships, guiding the adoption of secure practices through influence and collaboration.
  • Actively participate in governance forums such as the Change Advisory Board (CAB) and Architecture Board to provide security input.
  • Ensure that resilience and disaster recovery requirements are integrated into IT operational processes.

4. Reporting & Metrics

  • Track operational security KPIs (e.g., MTTD, MTTR, patch compliance SLAs, vulnerability backlog, security debt reduction).
  • Provide regular executive reporting on risk exposure, major incidents, and security posture trends to the IT Management, CIO and CISO.
  • Continuously evaluate the security tooling landscape (SIEM, SOAR, EDR, PAM, IAM, etc.) for operational efficiency and value; proposing technical solution designs and recommendations for improvements to IT management.

Key Interfaces

The ISO role is highly collaborative, working within a globally distributed IT team (Brazil, Belgium, Hungary, Philippines) and interacting closely with:

  • CISO – Alignment on strategy, policy, and risk; receiving strategic direction.
  • CIO & IT Manager – integration of security into IT operations and overall IT strategy.
  • External MSSP Partner – service delivery, performance management, escalation handling.
  • IT Infrastructure, Network, and Digital Workplace Teams – secure operations, patching, IAM, access governance.
  • Application & Development Teams: Improving security in the software development lifecycle.
  • Change Advisory Board (CAB) & Architecture Board: Security review and approval.
  • Enterprise & Solution Architects – embedding security by design.
  • Business-led IT teams in country organizations 
  • Legal & Compliance 
  • Procurement & Vendor Management 

more info about this job?

Laila HLIMI

Qualifications

  • 7+ years of experience in information security, with a strong foundation in security operations, security implementation, or security engineering
  • Proven leadership experience, managing technical teams and influencing diverse stakeholders across a global, multi-entity organization.
  • Experience managing an MSSP relationship and familiarity with services like SIEM, SOAR, and incident response is highly preferred.
  • Hands-on experience implementing and operating applicable ISO 27002 Annex A controls
  • Practical experience in key security domains such as vulnerability management, identity & access management (IAM), DLP, application security, or cloud security.
  • Understanding of the complexities of federated IT environments and the ability to build alignment through trust and dialogue.
  • Strong business acumen – able to translate complex technical risks into business-centric impact and recommendations
  • Proficiency in English; additional languages are an asset.

jobs

PM Role S4 HANA Rise (German Speaker)

Matches:  cloud and Infrastructure, data & analytics, finance, HR technology, information management, internal, marketing and communication, software development, supply chain & operations, Microsoft, OpenText, SAP, other than SAP and Microsoft, consultant, developer, internal role, some experience, lot of experience, no experience

Lead the project from planning, execution, until completion 

Ensure that the project is delivered on-time and within budget 

Create resource plan, and work on securing resource availability and allocation 

Support change management activities 

Drive issue and risk management activities

Accountant

Matches:  cloud and Infrastructure, data & analytics, finance, HR technology, information management, internal, marketing and communication, software development, supply chain & operations, Microsoft, OpenText, SAP, other than SAP and Microsoft, consultant, developer, internal role, some experience, lot of experience, no experience

Nemzetközi IT Consulting cég vagyunk, amely többek SAP rendszerek bevezetését végzi, közép- és nagyvállalatok digitalis transzformációját támogatja több kontinensen. Magyarországon 2 irodával vagyunk jelen:  Budapesten és Debrecenben dolgoznak kollegáink. Budapesti irodánk pénzügyi támogató csapatát szeretnénk erősíteni  (Junior) Accountant kollegával.

Fullstack Developer (.net Focus)

Matches:  cloud and Infrastructure, data & analytics, finance, HR technology, information management, internal, marketing and communication, software development, supply chain & operations, Microsoft, OpenText, SAP, other than SAP and Microsoft, consultant, developer, internal role, some experience, lot of experience, no experience

At delaware Hungary, we are looking for a Medior Web Developer to join our expanding international team. In this role, you will contribute to the development of cutting-edge web platforms, working primarily with React (Next.js a plus) and .NET 8 Web API. Experience with Sitecore is an advantage. You will play a key role in ensuring seamless backend integration and delivering modern, high-performance, and user-focused web experiences.

related stories

This is how a Customer Engagement consultant's day unfolds at delaware

András Sziebert has been working at delaware for more than three years, where he serves as a Customer Engagement consultant within the Global Delivery Center (GDC). In the following interview, you can learn about András's work, the CRM world, and his daily routine here at delaware.
read more

Junior analyst onboarding experience at delaware

September marked the annual Analyst Bootcamp, where the new juniors of delaware from all around the world came together to learn the basics of their future projects while getting to know their teammates and delaware better. In 2023, the Hungarian entity was represented in person for the second time: this year, our colleagues not only travelled to Belgium from Budapest but also from Debrecen. They returned home with countless unforgettable memories, which they have shared with us. 
read more

Motivation at the workplace: how do we keep up the spirit of work?

Whoever we ask why they love working for delaware, the team is always among the very first answers. In the Hungarian office, we put a big emphasis on supporting our colleagues in their professional career. Thus, we have collected all the motivational aspects of working for delaware Hungary...
read more

#rookiesofdelaware: a day in the lives of our newbies

During the past few weeks, our Instagram followers had the chance to get a glimpse into the everyday lives of our recent joiners. The goal of the #rookiesofdelaware initiative is to show how our newest colleagues spend their day at our office, thus, the participants took over our Instagram for a day and shared some stories about their various tasks. This year, the first season of our rookies series has come to an end, and we wanted to summarize how the first couple of months look like for the new employees. 
read more