Tempo Indeterminato
Warsaw, Masovian Voivodeship
Full - Time

As Cybersecurity Officer you will be responsable for:


  • Lead the implementation of a comprehensive Cybersecurity program.
  • Convey the L’Oréal Group Cybersecurity framework and adapt it when required to specific constraints.
  • Animate regular meetings with IT director and domain managers.

Risk Management / Security in Project:

  • Identify, estimate, evaluate Cybersecurity risks of your perimeter and ensure proper mitigation actions are in place.
  • Review security of Third Parties and ensure proper cybersecurity requirements are included in contracts & appendixes.
  • Make recommendations and follow action plans.
  • Make sure that all security steps (Risk analysis, contract review, penetration test, configuration check, code review, etc.) are done before Go Live.

Compliance / Action plan follow-up.

  • Ensure compliance with local regulations and mandatory standards (e.g. GDPR, PCI-DSS). 
  • Follow Group and Zone cybersecurity KPIs and controls.
  • Act as the IT point of contact to lead communications with internal and external auditors and ensure IT security compliance in the perimeter you are responsible for.
  • Ensure non compliances, vulnerabilities or any other security weaknesses are remediated in due time.

Cybersecurity Awareness / Education:

  • Ensure, in partnership with internal communication, that Group / Zone Cybersecurity awareness initiatives are properly deployed on your perimeter.
  • Educate local teams on Cybersecurity good practices.



  • Ensure existence of disaster recovery plans (DRP) for all critical assets of the perimeter, support in definition and execution when required.
  • Ensure proper Crisis Management team is in place.

To succeed in the role you will need the following technical & professional competencies:

  • A minimum of 5 years of experience in Cybersecurity is required.
  • In-depth technical knowledge and experience in information technology, computing systems, network technologies, security operations, security technologies, systems integration, and the application of information security concepts.
  • Proven and effective leadership skills, as well as demonstrated proficiency in providing requisite oversight for information security operations and incident management.
  • Excellent interpersonal skills, as well as an ability to interface efficiently with employees, senior leadership, and external partners, clients, and customers.
  • Excellent verbal and written communication skills to technical and non-technical audiences of various levels in the organization.
  • Fluent in English.
  • A previous experience as IT project manager or information security manager is preferred.


  • Master’s degree in computer science, Information Security/Data Systems Management or a related field or discipline from an accredited college or university is a minimum required. 
  • Information security or risk management certifications (ISO/IEC 27001, 27005) or Certified Information Systems Security Professional (CISSP) are preferred. Any additional certifications (e.g., CRISC, CISM, CISA, PMP, etc.) will be a plus for the application.

We offer:

  • Friendly and dynamic work atmosphere in the diverse environment of the market beauty leader.
  • Plenty of opportunities to grow - cross-divisionally and functionally.
  • #Learningneverstops mindset: wide learning and e-learning package.
  • Attractive benefits package including sports card, private health care, life insurance, pension package and internal boutique with a discount, product allocations.
  • Modern and sustainable office in Warsaw city center.
  • Community-engaged in Sports and CSR activities.

We are open for candidates with disabilities.

If you would like to participate in the above-mentioned recruitment process, it is mandatory to include in your resume the following closes:

“ I agree to the processing my personal data by L’Oréal Polska Sp. z o.o. with its registered office at Grzybowska 62, 00-844 Warsaw included in the CV, recruitment form and other application documents for the purpose and the scope necessary to carry out the recruitment process for the position of Payroll and Administration Specialist for Baltic countries“

I agree to the processing of my personal data included in the CV, recruitment form and other application documents for the use in the future recruitment by L’Oréal Polska Sp. z o.o. with its registered office at Grzybowska 62, 00-844 Warsaw.

Information clause

The controller of  personal data is L’Oréal Polska Sp. z o.o with its registered office in Warsaw (00-844) at Grzybowska 62. Contact with the Data Protection Officer and additional information about the personal data processing carried out by the Company is possible via e-mail address: [email protected].

The processing of personal data is carried out for the purpose of the recruitment process in accordance with Article 6(1)(c) of the General Regulation on Personal Data of 27 April 2016, (hereinafter GDPR). Data processing to a wider extent than resulting from the provisions of labour law, for the purposes of the future recruitment processes will be carry out on the basis of the given consent with accordance with Article 6(1)(a) of the GDPR.

Your personal data will not be disclosed to other entities without your prior consent. Your personal data may be made available and at the request of entities authorized to do so under the law. The controller may, by means of a written contract, entrust to another entity the processing of your personal data to the extent and for the purpose necessary to perform the service. Your personal data will not be transferred to a third country/international organization.

Your personal data will be kept for a period of 2 years from the end of the recruitment process – in which case these data will be processed until the consent is withdrawn.

You have the right to access their data, rectify, delete, object, limit processing and transfer. Your consent may be withdrawn at any time. Withdrawal of the consent will not affect the lawfulness of the processing of your personal data that was made on the basis of your given consent before its withdrawal. A declaration of withdrawal of the consent to the processing of your personal data should be sent to the e-mail or postal address indicated above.

You have the right to lodge a complaint to the President of the Personal Data Protection Office if you feel that the processing of your personal data violates the provisions of the GDPR.

Provision of personal data is voluntary but necessary for the participation in recruitment process. Failure to provision of personal data will result in the inability to participate in the recruitment process.

  • You can apply to up to three jobs within a rolling 30-day window.
  • You cannot withdraw your application once you applied, so please make sure to choose a job that matches your dreams.
  • Please visit "Your Application Space" to see the jobs you have already applied to.
  • Please don’t create another account with a different email. If you do so, your account might be merged and your application record will be deleted.