Dieses Jobangebot ist archiviert und steht nicht mehr zur Verfügung.
Vakante Jobangebote finden Sie unter Projekte.
Vakante Jobangebote finden Sie unter Projekte.
IT Security Manager (GxP, SOX, ISEC, Data Privacy)
Eingestellt von Adecco IT
Gesuchte Skills: Webserver, Linux
Projektbeschreibung
Adecco IT is currently looking for AN IT SECURITY MANAGER on behalf of its client, a major global company in the Healthcare sector located in Basel.
JOB PURPOSE:
- Assessment of the existing baseline document, Minimum configuration for IT landscape (Windows Servers, Linux Servers, DB, IIS7, Webserver, etc)
- Understanding the client's application landscape (High Risk Applications, GxP, Sox, ISEC, Data Privacy related applications)
- Understand the Business & IT pain points with respect to security compliance and challenges
- Understanding/assessing client's Security Policy, Assessment of the past Audit findings, Risk Assessment results etc.
- Creation & Update of Security baseline for the IT infrastructure components and application landscape aligned with best fit industry Security practices.
- Review and discussion with stakeholders with respect to Security Baseline
- Identify the Systems or applications where Security Baseline will not be feasible to implement considering the nature of applications or infrastructure landscape because of different reasons (Business-Legacy, Proprietary etc). Document and then recommend manual baseline configurations applicable for that (Ring-fencing, Isolation, etc)
- Baseline recommendations for the Emerging technologies virtualization, BYOD, Mobile Computing, IAAS, SAAS, etc based on the applicability in Novartis Landscape.
- Liaison with divisions, Business units to enforce and comply with Security Baseline for the High Risk System/Applications and Classified Systems/Applications on priority.
- Creation or recommendations towards Baseline Audit Checklist and User Guide/Playbook to ensure the sustainability aspect from long term view and to ensure the automation of compliance check with respect to baseline in long run.
RESPONSIBILITIES:
- Establishing cooperation among the members of a project team who are involved in internal information security functions.
- Champions standards and recommendations for security measures. Works operating budgets, identifies project controls, prioritizes team functions and direction, assigns tasks and reviews subordinates' work
- Manages the information security team to develop and implement security processes and procedures
- Manages the risk assessment resolution process.
- Responsible for coordinating any security auditing procedures.
- Ability to develop security protection and auditing policies and procedures.
- Responsible for promoting information security awareness.. Will determine new methods and develop new procedures for accomplishing work.
- Interfaces with all levels of management to negotiate project priorities and outcomes. Is able to effectively relate his/her technical expertise to varying organizational needs.
MISCELLANEOUS:
- START: May 2014
- Duration: 5 months
- Workload: 100% in Basel
JOB PURPOSE:
- Assessment of the existing baseline document, Minimum configuration for IT landscape (Windows Servers, Linux Servers, DB, IIS7, Webserver, etc)
- Understanding the client's application landscape (High Risk Applications, GxP, Sox, ISEC, Data Privacy related applications)
- Understand the Business & IT pain points with respect to security compliance and challenges
- Understanding/assessing client's Security Policy, Assessment of the past Audit findings, Risk Assessment results etc.
- Creation & Update of Security baseline for the IT infrastructure components and application landscape aligned with best fit industry Security practices.
- Review and discussion with stakeholders with respect to Security Baseline
- Identify the Systems or applications where Security Baseline will not be feasible to implement considering the nature of applications or infrastructure landscape because of different reasons (Business-Legacy, Proprietary etc). Document and then recommend manual baseline configurations applicable for that (Ring-fencing, Isolation, etc)
- Baseline recommendations for the Emerging technologies virtualization, BYOD, Mobile Computing, IAAS, SAAS, etc based on the applicability in Novartis Landscape.
- Liaison with divisions, Business units to enforce and comply with Security Baseline for the High Risk System/Applications and Classified Systems/Applications on priority.
- Creation or recommendations towards Baseline Audit Checklist and User Guide/Playbook to ensure the sustainability aspect from long term view and to ensure the automation of compliance check with respect to baseline in long run.
RESPONSIBILITIES:
- Establishing cooperation among the members of a project team who are involved in internal information security functions.
- Champions standards and recommendations for security measures. Works operating budgets, identifies project controls, prioritizes team functions and direction, assigns tasks and reviews subordinates' work
- Manages the information security team to develop and implement security processes and procedures
- Manages the risk assessment resolution process.
- Responsible for coordinating any security auditing procedures.
- Ability to develop security protection and auditing policies and procedures.
- Responsible for promoting information security awareness.. Will determine new methods and develop new procedures for accomplishing work.
- Interfaces with all levels of management to negotiate project priorities and outcomes. Is able to effectively relate his/her technical expertise to varying organizational needs.
MISCELLANEOUS:
- START: May 2014
- Duration: 5 months
- Workload: 100% in Basel
Projektdetails
Geforderte Qualifikationen
-
Kategorie:
IT Entwicklung