Take your career to the next level with Amaris Consulting as a Security Lead. Become part of an international team, thrive in a global group with €800M turnover and 1,000+ clients worldwide, and an agile environment. Join Amaris Consulting, where you can develop your potential and make a difference within the company.
Inscríbase ahora, lea los detalles del trabajo desplazándose hacia abajo. Verifique que posee las habilidades necesarias antes de enviar una solicitud.
WHAT ARE WE LOOKING FOR?
* Senior Security Consultant with 8+ years of experience in IT operations and cybersecurity
* Strong expertise in security hardening of systems (servers, workstations, network, mobile, access control, AV/EDR, proxy, cloud, M365, patch management, etc.)
* Proven hands-on experience with CIS Benchmarks and technical security baselines
* Solid experience working with Qualys (mandatory)
* Strong understanding of enterprise IT and security technologies across on-prem and cloud environments
* Ability to deep dive into technical topics and collaborate effectively with IT and security product SMEs
* Experience managing and following up on large-scale security control frameworks (100+ high-level controls and thousands of low-level controls)
* Comfortable working within governance bodies to validate and align on security control selection
* Experience in international environments
WHAT WILL YOU DO?
* Define and update technical security baselines aligned with organizational risks
* Select and fine-tune relevant CIS Benchmark controls to ensure proper risk coverage
* Lead and organize workshops with xsgfvud IT and security product SMEs to assess control applicability, impact analysis, and remediation approaches
* Validate selected controls within governance and control working groups
* Maintain and enhance the technical security baseline framework
* Provide structured follow-up and reporting inputs for steering committees
* Support product teams and entities in implementing and aligning with security baselines
* Ensure accurate tracking and governance of a large-scale security control framework