Dieses Jobangebot ist archiviert und steht nicht mehr zur Verfügung.
Vakante Jobangebote finden Sie unter Projekte.
Vakante Jobangebote finden Sie unter Projekte.
Information Security Officer for Internat. Org. in Geneva or Remote (T
Eingestellt von infeurope S.A.
Gesuchte Skills: Network, Client, Python, Php
Projektbeschreibung
Our client is an international Organisation (EN-speaking environment) and has a need for 1 INFORMATION SECURITY OFFICER .
Objective: Ensure operational conditions of systems, networks and security components.
Start: ASAP
Duration: 6 months and 2-3 days per week
Place: Geneva would be ideal. Remote work (from Europe) can be considered also, in this case we will have to validate that it is possible (security-wise).
TASKS AT A GLANCE (DETAILS BELOW):
- At a Glance: Information Security Officer for work such as Single Sign On, certificate, openLDAP, etc
- IT security architecture design, guidance and evolution; incident management, troubleshooting and debugging.
- Operational management of key IT infrastructure components. This includes all operations relative to AV, DHCP, DNS and network authentication services on Windows and Unix systems, as well as Firewall, intrusion detection systems and log correlation systems.
SOME MORE INFORMATION ABOUT RECENT CHANGES AT CLIENT-SITE:
- Network segmentation and security layering of infrastructure. In the context of a re-architecture of the organization network topology some fundamental changes relative to IT security have been introduced. This mainly was related to creation of security zones at the network level to reflect on the security requirement of the application running. In parallel, to increase the security of the user level access to the network infrastructure, the deployment of a port based access control mechanism (802.1X technology) has been designed and managed.
- Centralized authentication system based on PKI. To enable secure authentication to public web application, shared between organizational staff and external providers, a mixed mode authentication system based on LDAP directories and a PKI infrastructure has been designed.
- Incident management. Using the existing deployed tool set and integrating new approaches (event correlation, statistical analysis) enhanced security incident detection capacities inside the secretariat have been introduced. This helped detect a number of system MIS- configuration, user abuses and fraudulent accesses to infrastructure and the business applications.
TASKS AND TECHNOLOGIES IN DETAIL
You should have as much as possible:
Security: Confidentiality Integrity Accessibility
Single Sign On (SSO) [C/I]
Technologies: simpleSAMLPHP, LDAP, SSL client certificates
Improvement of current platform
Application performance monitoring & optimisation [A]
Technologies: Linux, MS, PHP/Drupal, MySQL, Python/Django
Moving applications to the cloud
System admin: MS Windows Server & Linux (debian/ubuntu/opensuse)
Web admin: IIS, Apache and/or Nginx (setup for PHP/Python)
Previous experience with one PaaS provider
Electronic signature (future need)
PKI infrastructure: MS & LX (openssl), client certificate, server certificate/Mobile/BYOD
Business continuity planning
Identify security issues and risks
Network monitoring and reporting (SNMP, mrtg, cacti)
Logging syslog et eventlog
Database management on MySQL/postgres
LDAP/LDAPS sur MS & LX (openldap, ADAM, ADLDS)
Network: IP, ip6, performance optimisation
Security: application security, logging, web
SAML2, ADFS, OpenID
LDAP/IP phone directory
GENERAL
Curriculum vitae shall illustrate the specific skills relevant to this proposal. The applicants' attention is drawn to the important role that the curriculum vitae plays in the valuation.
We would like to receive CVs of suitable candidates together with pricing quotations, based on a daily net rate including travel costs for the services described.
Please mention where you will work, in Geneva on client side or from Remote (from Europe).
Applicants must have an EU passport or a work permit for Switzerland.
PROVIDER
infeurope is a Luxembourg-based IT service provider, designing, developing and managing multilingual information and documentary systems in many application areas and business sectors. For more than 30 years we have delivered IT systems and solutions, and IT consultancy and staffing services, to our clients in Luxembourg and across Europe.
Objective: Ensure operational conditions of systems, networks and security components.
Start: ASAP
Duration: 6 months and 2-3 days per week
Place: Geneva would be ideal. Remote work (from Europe) can be considered also, in this case we will have to validate that it is possible (security-wise).
TASKS AT A GLANCE (DETAILS BELOW):
- At a Glance: Information Security Officer for work such as Single Sign On, certificate, openLDAP, etc
- IT security architecture design, guidance and evolution; incident management, troubleshooting and debugging.
- Operational management of key IT infrastructure components. This includes all operations relative to AV, DHCP, DNS and network authentication services on Windows and Unix systems, as well as Firewall, intrusion detection systems and log correlation systems.
SOME MORE INFORMATION ABOUT RECENT CHANGES AT CLIENT-SITE:
- Network segmentation and security layering of infrastructure. In the context of a re-architecture of the organization network topology some fundamental changes relative to IT security have been introduced. This mainly was related to creation of security zones at the network level to reflect on the security requirement of the application running. In parallel, to increase the security of the user level access to the network infrastructure, the deployment of a port based access control mechanism (802.1X technology) has been designed and managed.
- Centralized authentication system based on PKI. To enable secure authentication to public web application, shared between organizational staff and external providers, a mixed mode authentication system based on LDAP directories and a PKI infrastructure has been designed.
- Incident management. Using the existing deployed tool set and integrating new approaches (event correlation, statistical analysis) enhanced security incident detection capacities inside the secretariat have been introduced. This helped detect a number of system MIS- configuration, user abuses and fraudulent accesses to infrastructure and the business applications.
TASKS AND TECHNOLOGIES IN DETAIL
You should have as much as possible:
Security: Confidentiality Integrity Accessibility
Single Sign On (SSO) [C/I]
Technologies: simpleSAMLPHP, LDAP, SSL client certificates
Improvement of current platform
Application performance monitoring & optimisation [A]
Technologies: Linux, MS, PHP/Drupal, MySQL, Python/Django
Moving applications to the cloud
System admin: MS Windows Server & Linux (debian/ubuntu/opensuse)
Web admin: IIS, Apache and/or Nginx (setup for PHP/Python)
Previous experience with one PaaS provider
Electronic signature (future need)
PKI infrastructure: MS & LX (openssl), client certificate, server certificate/Mobile/BYOD
Business continuity planning
Identify security issues and risks
Network monitoring and reporting (SNMP, mrtg, cacti)
Logging syslog et eventlog
Database management on MySQL/postgres
LDAP/LDAPS sur MS & LX (openldap, ADAM, ADLDS)
Network: IP, ip6, performance optimisation
Security: application security, logging, web
SAML2, ADFS, OpenID
LDAP/IP phone directory
GENERAL
Curriculum vitae shall illustrate the specific skills relevant to this proposal. The applicants' attention is drawn to the important role that the curriculum vitae plays in the valuation.
We would like to receive CVs of suitable candidates together with pricing quotations, based on a daily net rate including travel costs for the services described.
Please mention where you will work, in Geneva on client side or from Remote (from Europe).
Applicants must have an EU passport or a work permit for Switzerland.
PROVIDER
infeurope is a Luxembourg-based IT service provider, designing, developing and managing multilingual information and documentary systems in many application areas and business sectors. For more than 30 years we have delivered IT systems and solutions, and IT consultancy and staffing services, to our clients in Luxembourg and across Europe.
Projektdetails
Geforderte Qualifikationen
-
Kategorie:
IT Entwicklung, Webentwicklung