VonConsulting.ro - 10 ani de Recrutare si Oursourcing IT
  • Home
  • About Us
  • Servicesarrow_drop_down
    • Recruitment
    • Outsourcing
    • Temporary Staffing
    • Consultancy
  • Career Opportunities
  • Contact Us
  • arrow_drop_down
  • ro
  • en
  • de

Cloud Security Compliance Expert

ID: von_26268466
Full time
remote
Middle, Senior
18-11-2022
Service Scope: The Security Compliance service's aim is to reduce the risk of internal/external cyber-attacks by keeping the client´s infrastructure and services compliant with security requirements. The main goal is to protect the brand, the business services and their values.
Responsibilities

Service Key activities:
 Collaborates with the delivery of a Cloud Security Roadmap in multiple security areas (patching, vulnerability, hardening, anti-malware) and govern action plans for each customer to become fully compliant;
 Coordinates work into the security functional teams incl. tracking of progress to check whether action plans are met and full reporting on technical as well on executive management level;
 Performs data quality analysis to identify gaps and trigger actions to resolve them across the client´s Cloud Infrastructure product owners and key stakeholders in order to ensure accurate security information as a pre-requisite for sustainable and correct data analysis;
 Performs cloud data analysis to identify Cyber Security Baseline compliance gaps (asset coverage and process maturity), define scope, activities, high/low-level plan;
 Supports the implementation of automated reporting (Public/Private Cloud Service Review reporting, Public/Private Cloud IS Leadership Team) by providing the business requirements aimed to get a central view of cloud security and compliance for the entire cloud estate;
 Provides periodical or on-demand effective reports across security controls and global initiatives (such as CCS, SEP, WMPC, SECURED) for different audiences (Technology Leadership team, Service Review meeting, technical teams).

 

Key-responsibilities:
 Definition of business requirements to implement, maintain, and automate standard reporting on client´s Public/Private Cloud Services;
 Collecting/cleaning/updating of datasets and processing of data models;
 Extraction and synthetic representation of complex analyses carried out by other professionals;
 Participate in the governance of security projects related to client´s Public/Private Cloud Services by ensuring the necessary information;
 Security reports production on coverage & compliance as per policy to be shared with local markets/Group entities, as well as with technology leadership team;
 Govern data quality assurance to be stored in a central repository (e.g. cloud asset inventory tool / internal security tool).

 

Key-deliverables:
 Fully automated reporting;
 Regular security report sharing and ad hoc analysis;
 Security-related action plans;
 Full quality of security information within the Security tool and other applications in use.

Requirements

Experience, Skills & Competencies:
 Consolidated knowledge of the cloud computing paradigm, related technologies and service models;
 Consolidated knowledge of Oracle Cloud Infrastructure;
 Information security governance (implementation of policies, guidelines and processes);
 Consolidated knowledge of IT and data center standards and regulations (e.g. ISO27001 / 20000 /9001, SOX, GDPR, PCI) and of the ITIL framework;
 Proven project management experience;
 Experience with project management in an information security context;
 Strong coordination, analytical and presentation skills;
 Fluent English (minimum level required: B2);
 3 – 5 years of practical experience in IT Operations, security functions;
 Strong organizational and project management skills with the ability to think strategically but work tactically to get things done quickly;
 Strong attention to detail;
 Self-starter with a strong work ethic;
 Excellent communication and presentation skills with the ability to effectively influence and communicate with executive levels of management internally and across external partners.

 

Must have technical/professional qualifications:
 Cloud Operating Model – emphasis on Oracle Cloud Infrastructure;
 General background of IT service & security management & governance (e.g. patching, VN remediation, hardening, endpoint protection)
 Scripting knowledge (Python, Ruby, Rust, etc.);
 General understanding of agile methodologies;
 Ability to work across international and distributed teams in a virtual environment;
 Able to deal with international customers and partners;
 Proficient in MS tools: Excel, PowerPoint;
 Experience to work with big data platform.

Apply with CV
close
  • Max. file size: 50 MB.
  • Hidden
  • This field is for validation purposes and should be left unchanged.
  • Similar Jobs
    • Networking Expert @ Cloud & Virtualization Team
    • Cloud Site Reliability Engineering Expert
    • Security Expert – TV Services –…
    • Cloud Network & Security Engineer
    • Database Integration Expert – Oracle APEX Developer
  • Recently Added Jobs
    • System Engineering Expert NSX
    • Senior Privacy Operations Specialist
    • Front-end Software Developer
    • R&D IT LAB Service Delivery Manager
    • IP Network Operation Engineer
  • Recent Articles
    • System Engineering Expert NSX
    • How About Becoming a Back-End Developer?
    • The Fanciest Job in Software Engineering?… Yet the Most Sought For?
    • Manifesto for Agile Software Development
    • Behind the Scenes of An IT Recruiter’s Life
© 2023 - VonConsulting.
  • Terms and Conditions
  • Privacy
Manage Cookie Preferences
To provide the best experiences, we use technologies like cookies to store and/or access device information. Consenting to these technologies will allow us to process data such as browsing behavior or unique IDs on this site. Not consenting or withdrawing consent, may adversely affect certain features and functions.
Functional Always active
The technical storage or access is strictly necessary for the legitimate purpose of enabling the use of a specific service explicitly requested by the subscriber or user, or for the sole purpose of carrying out the transmission of a communication over an electronic communications network.
Preferences
The technical storage or access is necessary for the legitimate purpose of storing preferences that are not requested by the subscriber or user.
Statistics
The technical storage or access that is used exclusively for statistical purposes. The technical storage or access that is used exclusively for anonymous statistical purposes. Without a subpoena, voluntary compliance on the part of your Internet Service Provider, or additional records from a third party, information stored or retrieved for this purpose alone cannot usually be used to identify you.
Marketing
The technical storage or access is required to create user profiles to send advertising, or to track the user on a website or across several websites for similar marketing purposes.
Manage options Manage services Manage vendors Read more about these purposes
Preferences
{title} {title} {title}