Dieses Jobangebot ist archiviert und steht nicht mehr zur Verfügung.
Vakante Jobangebote finden Sie unter Projekte.
Vakante Jobangebote finden Sie unter Projekte.
Industrial Security Expert (Cissp, CISM, CISA)
Eingestellt von John Stout Associates
Gesuchte Skills: Design, Network
Projektbeschreibung
INDUSTRIAL SECURITY EXPERT (CISSP, CISM, CISA)
The contract is with a consultancy in Brussels to be on an assignment at a large Pharma organization:- Responsibilities:
Close urgent gaps: Identify missing elementary controls for top critical applications based on Industrial security best practices (eg NIST 800-82)
Develop basic processes and guidance for ICS security management
Adapt IT Governance process for cyber aspects of ICS, but no detailed security assessments yet
Security Design and Guidelines
Contribute security expertise to the IT Industrial Framework workgroup
Produce ICS-specific version of the following IT Security Standards (ITSS):
- ITSS for vulnerability management, ITSS for Security Incident Management, ITSS for remote maintenance and support, IT Security Standards for Network segregation
Security design of Industrial ecosystem
- Produce new IT Security Standard for Industrial Ecosystem
Adapt IAA and governance process to accommodate Industrial projects
- Integrate ICS-specific questions in IAA
- Develop ICS security assessment based on industry best practices (NIST SP800-82)
Update Security incident process and SOC procedure to handle Industrial security incidents
Security Operations
Close urgent gaps: identify missing elementary controls for top critical applications (eg Internet connectivity, backup of data) based on existing IT assessments
Review Firewall rules for ICS segregated zones
Also perform basic security assessment for selected projects (ZETA, Saitama) as part of IIF Review Committee
Specific professional/technical expertise and key skills required:
Strong experience in Information Security, with at least 3 years of experience in the field of industrial security
Relevant security education and certifications (CISSP, CISM, CISA) are a plus
Solution oriented, turning technical and security constraints into opportunities for projects and applications
Ability to deal with ambiguity and translate high level objectives into detailed tasks
Ability to prioritize work with multiple, simultaneous work assignments
English mandatory
The contract is with a consultancy in Brussels to be on an assignment at a large Pharma organization:- Responsibilities:
Close urgent gaps: Identify missing elementary controls for top critical applications based on Industrial security best practices (eg NIST 800-82)
Develop basic processes and guidance for ICS security management
Adapt IT Governance process for cyber aspects of ICS, but no detailed security assessments yet
Security Design and Guidelines
Contribute security expertise to the IT Industrial Framework workgroup
Produce ICS-specific version of the following IT Security Standards (ITSS):
- ITSS for vulnerability management, ITSS for Security Incident Management, ITSS for remote maintenance and support, IT Security Standards for Network segregation
Security design of Industrial ecosystem
- Produce new IT Security Standard for Industrial Ecosystem
Adapt IAA and governance process to accommodate Industrial projects
- Integrate ICS-specific questions in IAA
- Develop ICS security assessment based on industry best practices (NIST SP800-82)
Update Security incident process and SOC procedure to handle Industrial security incidents
Security Operations
Close urgent gaps: identify missing elementary controls for top critical applications (eg Internet connectivity, backup of data) based on existing IT assessments
Review Firewall rules for ICS segregated zones
Also perform basic security assessment for selected projects (ZETA, Saitama) as part of IIF Review Committee
Specific professional/technical expertise and key skills required:
Strong experience in Information Security, with at least 3 years of experience in the field of industrial security
Relevant security education and certifications (CISSP, CISM, CISA) are a plus
Solution oriented, turning technical and security constraints into opportunities for projects and applications
Ability to deal with ambiguity and translate high level objectives into detailed tasks
Ability to prioritize work with multiple, simultaneous work assignments
English mandatory
Projektdetails
Geforderte Qualifikationen
-
Kategorie:
IT Entwicklung, Medien/Design