Cybersecurity Officer
This role is for a Cybersecurity Officer who will own end-to-end cybersecurity, information security, and IT security across the company, encompassing both internal and product security. The position involves defining and executing the company-wide cybersecurity strategy and roadmap, establishing security policies and controls, and leading security risk management. The Cybersecurity Officer will ensure compliance with regulatory standards, oversee secure architecture, and manage security operations, including incident response and application security practices. This role also includes managing fraud prevention, vendor security, and abuse investigation processes, as well as overseeing a cybersecurity team.
- Own end-to-end cybersecurity, information security, and IT security across the company, covering both internal security (breach attempts, internal network monitoring) and product security (product-related threats and risks)
- Define, evolve, and execute the company-wide cybersecurity strategy and security roadmap aligned with business and product priorities
- Establish and enforce security policies, standards, procedures, and organization-wide security controls
- Lead security risk management, including risk assessments, risk register ownership, and mitigation planning
- Ensure compliance with regulatory and industry standards (e.g., GDPR, ISO 27001, SOC 2) and manage internal/external audits
- Oversee secure architecture across cloud infrastructure, applications, SDLC, and IAM, including review of critical architectural decisions
- Define and enforce security standards for encryption, key management
- Own security operations, including monitoring, detection, response capabilities, and incident response for critical (P0/P1) events
- Drive Application Security and DevSecOps practices (SAST, DAST, SCA, CI/CD security controls, threat modeling) in collaboration with engineering teams
- Oversee IAM, endpoint, and workforce security, including access control models, EDR strategy, device security, and joiner/mover/leaver processes
- Lead fraud prevention, vendor security, and internal/external abuse investigation processes, while managing security KPIs, reporting, budget, and team scaling
- Manage a cybersecurity team, including Cloud Security, SOC, Application Security / DevSecOps, Endpoint Security, IAM, and Information Security functions
- 7+ years of experience in cybersecurity, or similar role
- Experience in a leadership role
- Strong expertise in cloud security (AWS, GCP, or Azure)
- Solid understanding of application security and secure SDLC practices
- Hands-on experience with SIEM, EDR, and incident response processes
- Deep knowledge of identity and access management models (RBAC, ABAC, least privilege)
- Experience working with compliance frameworks such as ISO 27001, SOC 2, and GDPR
- Proven track record of building and scaling security programs in growing organizations
- English - upper-intermediate or higher (able to communicate in technical discussions)
- Health & Wellness Focus
- Global Medical Coverage
- Growth Opportunities
- Benefits Programs (compensation for the gym/stomatology/psychological service & etc.)
- Performance-Driven Rewards
- Dynamic Work Environment
Growe is a business advisory and services group operating in the iGaming and entertainment industries. Headquartered in Warsaw, it combines strategic vision with hands-on expertise to help businesses navigate the sector, enter new markets and achieve sustainable growth. Its capabilities span business and brand strategy, market research, marketing solutions, IT customisation, organisational structuring and talent management. The company focuses on launching new iGaming brands worldwide and turning challenges into competitive advantages for its clients.
