Responsible for applying risk management discipline, understanding business risks, defining security requirements and policies, and managing Information Security Projects and Operations.
Tasks and responsibilities
* Build and evolve the Information Security discipline in all its scope: Technology, People and Processes.
* Provide input and critical thinking for the construction of the Information Security Roadmap.
* Internal responsible for low-complexity Security projects, full accountability for Project Management: scope management, cost tracking, progress report, etc.
* Interact with IT functions and Business stakeholders to get a full understanding of the business context, risks, concerns, and assist them in making risk-informed decisions.
* Apply Risk Management practices to the Business and propose risk mitigation plans.
* Translate IS requirements into security policies at technical level that enable Business objectives.
* Provide Technical Assurance to Risk Assessment and Risk Monitoring activities: hands-on technical understanding of IT Infrastructure (AD, Networking, Cloud infrastructure) and Security components (EDR, AV, FW, etc).
* Support to low-complexity Security Operations: alert management, business impact analysis, actions plans, follow-up.
* Lead Personnel Awareness actions: presentations, communications, etc.
Education
Experience
* At least 5 years of experience in a similar role
Specific Knowledge
* Technology savy (IT infrastructure & Security components)
* Cybersecurity
* Business analysis
* Security standards and frameworks (e.g. NIST CSF).
Values
* Care: we listen & empathize, we value diverse perspectives & backgrounds and we help each other succeed.
* Courage: we challenge the status quo, we take full ownership and we learn from our success & failures
* Innovation: we put the patient and customer at the center, we create novel solutions and we empower entrepreneurial mindsets.
* Simplicity: we act decisively and avoid over-analysis, we understand why before we act and we are agile & keep things simple.
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
#J-18808-Ljbffr