Dieses Jobangebot ist archiviert und steht nicht mehr zur Verfügung.
Vakante Jobangebote finden Sie unter Projekte.
Vakante Jobangebote finden Sie unter Projekte.
IT Risk Coordinator
Eingestellt von Next Ventures Ltd
Gesuchte Skills: Support
Projektbeschreibung
Information Security/IT Security & Operational Risk Coordinator
Main responsibilities of OSM (Operational risk and Security Management) are following:
1. Main infrastructure security management duties:
Participate in ISS (Information Security Services) strategy and roadmap definition, jointly with local IT management, regional technical security officer and business line representatives, and ensure formal follow-up of key milestones
Contribute to the local adaptation of Group ISS policies and guidelines taking into account local constraints (regulation, infrastructures, organization, etc.) and ensure that they are correctly applied and implemented
Ensure the alignment of the security measures with ISS policies, guidelines, and standards
Ensure that global security projects are correctly deployed and assist project owners from local IT departments during the execution
Participate to ISS processes execution and to the day-to-day operational security activities in terms of security tools management, security monitoring, security incidents follow-up and investigation, accounts review
Follow-up and coordinate the corrective actions plans for ISS vulnerabilities procedures and controls are correctly formalized, suitably updated and executed
Perform level II Controls to make sure about the quality of the Permanent Supervision
3. Transversal actions
Follow-up and coordinate action plans related to Internal Audit and Inspection recommendations
Provide operational risk and security reports at local level (indicator gathering and consolidation) and facilitate the reporting at central IT level
Mission description:
In order to reinforce its activity, IT requests an external assistance. The coordinator will be actively involved in all OSM activities described here above
- Support the Operational Risk and Security department's goals and objectives by performing multiple, self-guided technical or functional roles.
- Assist in the definition of procedures, standards and documentation.
- Take part in the management of security related activities.
- Help in the deployment and execution of the permanent supervision controls.
- Pilot security related project in order to fulfil audit requests.
- Identify and assess operational and information systems risks.
The coordinator will also specifically focus on following tasks:
- Define CH High privilege access management policy and procedures.
- Manage log management implementation project
- Define and roll out OS hardening initiatives for different Servers' environments. Pilot related actions so to ensure right set-up of new server and periodical review of old assets.
Main expected deliverables:
- Regular activity reporting to region
- Log management project scope definition and tool implementation
- OS Hardening action plan and planning
- High privileges management procedure
Required skills:
- IT/Computer Science Degree or equivalent experience
- Min. of 3 years work experience in external or internal audit or alternatively in an IT department in banking and finance.
- In depth technical security knowledge and ability to assess risk on IT architecture.
- Security qualifications such as CISSP, CISM, CISA, CLAS desirable.
- Understanding of security standards such as ISO 27001.
- English mandatory, French or German a plus.
Main responsibilities of OSM (Operational risk and Security Management) are following:
1. Main infrastructure security management duties:
Participate in ISS (Information Security Services) strategy and roadmap definition, jointly with local IT management, regional technical security officer and business line representatives, and ensure formal follow-up of key milestones
Contribute to the local adaptation of Group ISS policies and guidelines taking into account local constraints (regulation, infrastructures, organization, etc.) and ensure that they are correctly applied and implemented
Ensure the alignment of the security measures with ISS policies, guidelines, and standards
Ensure that global security projects are correctly deployed and assist project owners from local IT departments during the execution
Participate to ISS processes execution and to the day-to-day operational security activities in terms of security tools management, security monitoring, security incidents follow-up and investigation, accounts review
Follow-up and coordinate the corrective actions plans for ISS vulnerabilities procedures and controls are correctly formalized, suitably updated and executed
Perform level II Controls to make sure about the quality of the Permanent Supervision
3. Transversal actions
Follow-up and coordinate action plans related to Internal Audit and Inspection recommendations
Provide operational risk and security reports at local level (indicator gathering and consolidation) and facilitate the reporting at central IT level
Mission description:
In order to reinforce its activity, IT requests an external assistance. The coordinator will be actively involved in all OSM activities described here above
- Support the Operational Risk and Security department's goals and objectives by performing multiple, self-guided technical or functional roles.
- Assist in the definition of procedures, standards and documentation.
- Take part in the management of security related activities.
- Help in the deployment and execution of the permanent supervision controls.
- Pilot security related project in order to fulfil audit requests.
- Identify and assess operational and information systems risks.
The coordinator will also specifically focus on following tasks:
- Define CH High privilege access management policy and procedures.
- Manage log management implementation project
- Define and roll out OS hardening initiatives for different Servers' environments. Pilot related actions so to ensure right set-up of new server and periodical review of old assets.
Main expected deliverables:
- Regular activity reporting to region
- Log management project scope definition and tool implementation
- OS Hardening action plan and planning
- High privileges management procedure
Required skills:
- IT/Computer Science Degree or equivalent experience
- Min. of 3 years work experience in external or internal audit or alternatively in an IT department in banking and finance.
- In depth technical security knowledge and ability to assess risk on IT architecture.
- Security qualifications such as CISSP, CISM, CISA, CLAS desirable.
- Understanding of security standards such as ISO 27001.
- English mandatory, French or German a plus.
Projektdetails
Geforderte Qualifikationen
-
Kategorie:
Sonstiges