Responsible for identifying vulnerabilities and working with our IT department to resolve them, ensuring that our network and data remain secure. Design and enforce policies and procedures that protect our organization's computing infrastructure from all forms of security threats.
Employer Profile
IT Services Department, within a financial/Insurance group.
Responsibilities
Real-time monitoring of network usage and analysis of security events from multiple sources to to ensure compliance with security policies;
Identifies vulnerabilities, investigates and reports security incidents;
Supports the delivery of threat management, technological controls and incident response, implementing the appropriate procedure in order to neutralize the risks;
Performs the collection and management of information security operations metrics and measures;
Produces high quality outcomes and timely service delivery;
Suggests measures for minimizing the risks of cyber security incidents;
Participates in maintaining up to date related security documentation and developing policies/ procedures/ standards of information security;
Able to train and educate our staff in various information security topics;
Analyzes, tests and deploys security solutions from vendors;
Offers consultancy, on security matters, for other projects developed within the company;
Performs administration, testing, and remediation (including the support of RCA) of security controls;
Collaborates with business teams to effectively predict, protect, and respond to security threats;
Conducts research and evaluation of new security technologies, processes, and methodologies.
Requirements
Bachelor’s degree in computer science, information systems, engineering or the equivalent combination of formal education, training, and experience;
Senior: 4+ year of work experience directly supporting information security operations;
Regular: 2+ year of work experience directly supporting information security operations;
Professional information security certification represents an advantage;
Solid knowledge of various information security frameworks.
Technologies considered a plus: SIEM, DLP, PAM
Standards: ISO 27001 awareness
Strong analytical abilities, interpersonal skills, and verbal / written communication;
Ability to educate a non-technical audience about various security measures;
Experience working on a team to effectively respond to complex requests;
Willingness to be on-call, work non-standard hours, and travel when required;
To provide the best experiences, we use technologies like cookies to store and/or access device information. Consenting to these technologies will allow us to process data such as browsing behavior or unique IDs on this site. Not consenting or withdrawing consent, may adversely affect certain features and functions.
Functional
Always active
The technical storage or access is strictly necessary for the legitimate purpose of enabling the use of a specific service explicitly requested by the subscriber or user, or for the sole purpose of carrying out the transmission of a communication over an electronic communications network.
Preferences
The technical storage or access is necessary for the legitimate purpose of storing preferences that are not requested by the subscriber or user.
Statistics
The technical storage or access that is used exclusively for statistical purposes.The technical storage or access that is used exclusively for anonymous statistical purposes. Without a subpoena, voluntary compliance on the part of your Internet Service Provider, or additional records from a third party, information stored or retrieved for this purpose alone cannot usually be used to identify you.
Marketing
The technical storage or access is required to create user profiles to send advertising, or to track the user on a website or across several websites for similar marketing purposes.
