Dieses Jobangebot ist archiviert und steht nicht mehr zur Verfügung.
Vakante Jobangebote finden Sie unter Projekte.
Vakante Jobangebote finden Sie unter Projekte.
Senior Security Assurance Analyst
Eingestellt von Sanderson Recruitment Plc
Gesuchte Skills: Support, Network, Linux, Client
Projektbeschreibung
My client is an international telecommunications consultancy. I am looking for a Senior Security Assurance Analyst to work onsite at their client in Luxembourg, supporting the IT Security Team. This is an initial 6 month contract with the option to extend:
The mission is to support the client in delivering security services, in the field of security assurance, which includes:
-
Vulnerability assessment and handling;
-
IT security compliance checking;
-
Penetration testing.
You will also provide support in the 'hardening' of IT infrastructure and information assurance processes.
In addition, you may support both CSIRC and SOC in the monitoring and incident handling processes.Security Vulnerability Assessment and Security technical compliance (VAC) Service
Build an IT assets catalog, taking into account their criticality
The systems to test include a wide range of operating systems, network components, database systems, application Servers;
Evaluate and implement solutions to deliver the service, by
-
Analysing the market;
-
Testing solutions during POCs by developing tests environments, integrating solutions, running tests scenarios and generating results reports;
Operate the infrastructure and solutions necessary for security vulnerability assessment and security technical compliance service;
In close partnership with customers/system owners, execute vulnerability and compliance assessments, by
-
Preparing/specifying the tests, planning;
-
Performing the tests;
-
Analysing results, drafting recommendations, drafting executive and technical reports;
-
Exchanging with teams on results and recommendations;
Follow-up remediation plans;
Perform security watch on new vulnerabilities, exploits and attack methods;
In specific cases (ex for unpatched vulnerabilities),
-
perform technical analysis and examination of new vulnerabilities;
-
determine the appropriate response to mitigate or repair it;
-
notify the various parts about the vulnerability and share information about how to fix or mitigate it and coordinate vulnerability response;
Define and improve the service from a technical and organisational perspective
-
Define policies, processes and procedures (PPP) related to the service;
-
Draft service description related documents (service catalog);
-
Define KPIs and reporting documents/dashboards.
Penetration testing
In addition to the VAC service, the job holder will take part in the penetration testing process:
-
Keep watch and implement appropriate tools to deliver the service;
-
Prepare and perform the tests, if realised internally;
-
Take part in the preparation of the pentests, supervise their execution, if outsourced;
-
Integrate pentests results within the frame of vulnerability management.
Participate in the Security engineering and hardening of Security Operations Centre Infrastructure Components
Participate in designing, implementing and managing security controls for Security Operations Centre Infrastructure components.
This includes (but is not limited to) the following components:
-
VM Ware Servers
-
Windows Servers
-
Linux Servers
-
NetAPP FAS Storage NAS
-
Oracle Database
-
ArcSight components (Logger, log forwarders, smart connectors, ESM, DB, Clients )
-
Cisco Switches
-
Firewalls (Checkpoint)
-
Intrusion Detection Systems
-
Enterprise Network and Systems forensics solutions
-
Forensics lab
-
Vulnerability assessment and configuration compliance solutions
-
Other security solutions (central password management system, PKI)
-
Infrastructure monitoring solutions
-
CMDBs
Security engineering tasks will have to be performed such as systems hardening and implementation of measures to comply with applicable security policies such as Privileged User Access Control and Security Monitoring;
Documentation (configuration, security operating procedures) will have to be developed and maintained.
Support SOC and CSIRC in the monitoring and incident response processes
Improve monitoring rules and provide support to analysts
By sharing knowledge with security analysts on system related aspects, participating in improving correlation rules, discovery and assessment techniques and measures.Support CSIRC
-
Support in the analysis phase: provide input related to impacted assets, vulnerability knowledge;
-
Support in elaborating the response strategy and mitigation measures;
EDUCATION, KNOWLEDGE, SKILLS AND EXPERIENCE
-
Strong experience in risk evaluation and remediation;
-
Strong experience with Vulnerability Assessment and Security compliance solutions;
-
Certifications such as GPEN, GWAPT, GWPN are a strong advantage
-
Experience with hardening systems security;
-
Experience in UNIX (Sun Solaris and Linux Redhat) system administration and or Oracle Databases;
-
Experience with basic network protocols such as TCP/IP, IP/SEC, SMTP, DNS, etc., and network equipment such as Switches, hubs, Routers, etc;
-
Strong hands-on experience in the security of Windows/Unix (including Linux) environment;
-
Knowledge of Scripting language (Perl, python, windows powershell );
IN ADDITION, HE/SHE WILL HAVE TO DEMONSTRATE:
-
A very good command of English and French (written and spoken);
-
The job holder must be (or able to be) security cleared at UE SECRET level.
The mission is to support the client in delivering security services, in the field of security assurance, which includes:
-
Vulnerability assessment and handling;
-
IT security compliance checking;
-
Penetration testing.
You will also provide support in the 'hardening' of IT infrastructure and information assurance processes.
In addition, you may support both CSIRC and SOC in the monitoring and incident handling processes.Security Vulnerability Assessment and Security technical compliance (VAC) Service
Build an IT assets catalog, taking into account their criticality
The systems to test include a wide range of operating systems, network components, database systems, application Servers;
Evaluate and implement solutions to deliver the service, by
-
Analysing the market;
-
Testing solutions during POCs by developing tests environments, integrating solutions, running tests scenarios and generating results reports;
Operate the infrastructure and solutions necessary for security vulnerability assessment and security technical compliance service;
In close partnership with customers/system owners, execute vulnerability and compliance assessments, by
-
Preparing/specifying the tests, planning;
-
Performing the tests;
-
Analysing results, drafting recommendations, drafting executive and technical reports;
-
Exchanging with teams on results and recommendations;
Follow-up remediation plans;
Perform security watch on new vulnerabilities, exploits and attack methods;
In specific cases (ex for unpatched vulnerabilities),
-
perform technical analysis and examination of new vulnerabilities;
-
determine the appropriate response to mitigate or repair it;
-
notify the various parts about the vulnerability and share information about how to fix or mitigate it and coordinate vulnerability response;
Define and improve the service from a technical and organisational perspective
-
Define policies, processes and procedures (PPP) related to the service;
-
Draft service description related documents (service catalog);
-
Define KPIs and reporting documents/dashboards.
Penetration testing
In addition to the VAC service, the job holder will take part in the penetration testing process:
-
Keep watch and implement appropriate tools to deliver the service;
-
Prepare and perform the tests, if realised internally;
-
Take part in the preparation of the pentests, supervise their execution, if outsourced;
-
Integrate pentests results within the frame of vulnerability management.
Participate in the Security engineering and hardening of Security Operations Centre Infrastructure Components
Participate in designing, implementing and managing security controls for Security Operations Centre Infrastructure components.
This includes (but is not limited to) the following components:
-
VM Ware Servers
-
Windows Servers
-
Linux Servers
-
NetAPP FAS Storage NAS
-
Oracle Database
-
ArcSight components (Logger, log forwarders, smart connectors, ESM, DB, Clients )
-
Cisco Switches
-
Firewalls (Checkpoint)
-
Intrusion Detection Systems
-
Enterprise Network and Systems forensics solutions
-
Forensics lab
-
Vulnerability assessment and configuration compliance solutions
-
Other security solutions (central password management system, PKI)
-
Infrastructure monitoring solutions
-
CMDBs
Security engineering tasks will have to be performed such as systems hardening and implementation of measures to comply with applicable security policies such as Privileged User Access Control and Security Monitoring;
Documentation (configuration, security operating procedures) will have to be developed and maintained.
Support SOC and CSIRC in the monitoring and incident response processes
Improve monitoring rules and provide support to analysts
By sharing knowledge with security analysts on system related aspects, participating in improving correlation rules, discovery and assessment techniques and measures.Support CSIRC
-
Support in the analysis phase: provide input related to impacted assets, vulnerability knowledge;
-
Support in elaborating the response strategy and mitigation measures;
EDUCATION, KNOWLEDGE, SKILLS AND EXPERIENCE
-
Strong experience in risk evaluation and remediation;
-
Strong experience with Vulnerability Assessment and Security compliance solutions;
-
Certifications such as GPEN, GWAPT, GWPN are a strong advantage
-
Experience with hardening systems security;
-
Experience in UNIX (Sun Solaris and Linux Redhat) system administration and or Oracle Databases;
-
Experience with basic network protocols such as TCP/IP, IP/SEC, SMTP, DNS, etc., and network equipment such as Switches, hubs, Routers, etc;
-
Strong hands-on experience in the security of Windows/Unix (including Linux) environment;
-
Knowledge of Scripting language (Perl, python, windows powershell );
IN ADDITION, HE/SHE WILL HAVE TO DEMONSTRATE:
-
A very good command of English and French (written and spoken);
-
The job holder must be (or able to be) security cleared at UE SECRET level.
Projektdetails
Geforderte Qualifikationen
-
Kategorie:
IT Entwicklung, Sonstiges