Technical Information Security/Infrastructure Consultant, the Hague NL

LOOKING FOR A TECHNICAL INFORMATION SECURITY CONSULTANT ON INFRASTRUCTURE LEVEL FOR OUR END CLIENT IN THE HAGUE!

Interviews are planned for week beginning 20/05/2013

Start: 17-06-2013
Duration: 6 months, option to extend
Hourly rate: 59,00

You need to demonstrate wide experience of delivering sound information assurance advice in a number of different organisations, a deep technical background gained from experience designing and delivering technical infrastructure, and application of extensive knowledge of IT Infrastructure to provide sound advice to mitigate information risk commensurate with business need in a cost-effective way.

YOU WILL:
Assist with information security review of automation projects and advice to staff managing and working on those projects.
Understand challenges and threats facing the business and translate into sound security requirements for new and existing IT Infrastructure that effectively mitigate identified risks whilst allowing the business to operate effectively.
Complete technical risk assessments as necessary.
Identify system vulnerabilities and complete or propose work to test security of a system using specialists in penetration testing.
Collaborate with architecture team with translating security requirements into a security architecture.
Monitor and advise on information security issues related to systems and processes to ensure security controls effectively mitigate risk and operating as intended.
Assisting with establishment of all elements ISMS including continuing development and documentation of information security policies, procedures, standards and guidelines based on
knowledge of best practices and compliance requirements.
Collaborate with IT management, legal department and operational IT and physical
security groups to support security management implementation and enforcement while
representing the security team in a positive light, ensuring that it is seen as a business enabler.
Assist with responses to information security incidents and vulnerabilities.

SKILLS REQUIRED:
7 years+ of progressive experience in IT Infrastructure and information security, including  broad experience in securing Internet technologies.
Required: Strong analytical and problem solving skills.
Required: Ability to communicate (oral, written, presentation) in English, interpersonal and
consultative skills.

HIGHLY DESIRABLE:
Demonstrable broad knowledge and hands-on experience of infrastructure technologies through the entire infrastructure stack, including: network, virtualisation, SAN, server OS (Windows and UNIX) and common business technologies (for example, SQL Server, SharePoint). Technical knowledge of and experience working with computer systems and the application of security to those systems.
Knowledge and practical experience of security risk assessment following ISO 27005 and/or eSABSA standards and methods.
Knowledge of information security standards, in particular ISO 27001&2, rules and regulations related to information security and data confidentiality and desktop, server, application, database, network security principles for risk identification and analysis.
Experience should include security policy development, security education, risk analysis and compliance testing.
Experience in large, international organizations.
Experience with application security.
CISSP, GIAC, or other security certifications and/or membership of a professional institution representing security professionals.

DESIRABLE:
System penetration testing, application vulnerability assessments.
Security Incident Management, including incident analysis.
SABSA, TOGAF, experience and/or certification.

VERY GOOD KNOWLEDGE AND EXPERIENCE OF MANY OF THE FOLLOWING TECHNOLOGIES IS HIGHLY DESIRABLE:
o Firewalls
o IDPS
o VPN technologies, including SSL.
o Web Access Management
o Malware protection
o Authentication technologies such as Radius, Kerberos, Single-Sign On, Vasco tokens, Federation (SAML, WS-Fed), WebSSO, two factor authentication
o Authorization including RBAC, Rules based authorization
o LAN, WAN and SAN concepts and technical implementations
o Mainframe, Windows, Unix, Linux Operating Systems
o Identity Repositories including LDAP, Active Directory, RACF
o IAM suites including Microsoft FIM 2010, Microsoft ADFS

IS THIS YOU? APPLY NOW! PLEASE SEND US YOUR ENGLISH CV INCLUDING A SHORT MOTIVATION.