Dieses Jobangebot ist archiviert und steht nicht mehr zur Verfügung.
Vakante Jobangebote finden Sie unter Projekte.
Vakante Jobangebote finden Sie unter Projekte.
Cyber Defence Advisor
Eingestellt von Base 3
Gesuchte Skills: Support, Ip, Tcp, Network
Projektbeschreibung
Cyber Defence Advisor
CONTEXT
The Security department supports IT and Business Units to develop adequate solutions in Information Security and Risk Management practices.
Their mission:
- to enable sound and formal information security risk decision making by management, and
- to help management with implementing a proper information security management system.
They commit to deliver upon four objectives:
- enable the extended enterprise;
- Counter cybercrime;
- Protect information systems;
- Manage security risks.
Consequently, the vision of the team is to support Counter cybercrime objective by demonstrably best in class' preparation and response to unauthorized cyber activity.
This is done by providing the following services:
Proactive
- support
Vulnerability Qualification. Ensure prompt qualification of vulnerabilities.
Vulnerability Remediation. Coordinate and provide support to IT teams with their vulnerability remediation activities which basically equates to patch management processes.
Vulnerability Control. Provide reporting to all levels of stakeholders on vulnerability remediation status. Maintain relevant solution in central Governance, Risk and Control tooling.
Vulnerability Governance
- Ensure requirements are captured in bank policies and standards;
- Describe and implement clear Roles and responsibilities;
- Maintain functional architecture framework;
- Maintain and automate the Process;
- Define remediation SLA and ensure its endorsement by all levels.
REQUIRED EXPERIENCE
- 3-5 years of experience in Information Security
- Network security expert
- Working knowledge of entire TCP/IP or OSI network protocol stack, including major protocols such as IP, ICMP, TCP, UDP, SMTP, POP3, HTTP, FTP, and SSH.
- Good understanding of IT security technology and processes (secure networking, web infrastructure, WinTEL, UNIX, etc.);
- Security Incident Management; CSIRT.
CONTEXT
The Security department supports IT and Business Units to develop adequate solutions in Information Security and Risk Management practices.
Their mission:
- to enable sound and formal information security risk decision making by management, and
- to help management with implementing a proper information security management system.
They commit to deliver upon four objectives:
- enable the extended enterprise;
- Counter cybercrime;
- Protect information systems;
- Manage security risks.
Consequently, the vision of the team is to support Counter cybercrime objective by demonstrably best in class' preparation and response to unauthorized cyber activity.
This is done by providing the following services:
Proactive
- support
Vulnerability Qualification. Ensure prompt qualification of vulnerabilities.
Vulnerability Remediation. Coordinate and provide support to IT teams with their vulnerability remediation activities which basically equates to patch management processes.
Vulnerability Control. Provide reporting to all levels of stakeholders on vulnerability remediation status. Maintain relevant solution in central Governance, Risk and Control tooling.
Vulnerability Governance
- Ensure requirements are captured in bank policies and standards;
- Describe and implement clear Roles and responsibilities;
- Maintain functional architecture framework;
- Maintain and automate the Process;
- Define remediation SLA and ensure its endorsement by all levels.
REQUIRED EXPERIENCE
- 3-5 years of experience in Information Security
- Network security expert
- Working knowledge of entire TCP/IP or OSI network protocol stack, including major protocols such as IP, ICMP, TCP, UDP, SMTP, POP3, HTTP, FTP, and SSH.
- Good understanding of IT security technology and processes (secure networking, web infrastructure, WinTEL, UNIX, etc.);
- Security Incident Management; CSIRT.
Projektdetails
Geforderte Qualifikationen
-
Kategorie:
IT Entwicklung, Sonstiges