Service Overview
The service of Production Security provides all necessary resources to ensure the correct and efficient deployment, administration and support of operational security solutions and tools on network, server and endpoint infrastructures for business areas operated by ITG.
Security policies are deployed to fulfill Group requirements and / or local CyberDefense needs.
Exceptions are analysed and implemented on a daily basis to fulfill operational and business needs.
These exceptions must be analysed with a Risk Analysis perspective and proceeded in an auditable way.
Security Exception Management Team provides a central service to analyse exception requests, based on security guidelines, and thanks to Production Referentials.
Technical scopes are:
- Firewall filtering on ITG Production Security perimeter,
- Web Application Firewall (WAF),
- Web browsing filtering and downloading filtering on EndUsers Endpoints
Missions & TAsks
- Risk analysis on behalf of CISO prior to implementation of security exceptions.
- Escalations and alerts in case of non-compliant requests / situations.
- Review of security policies and alignment between stakeholders.
- Maintaining security referentials.
- Publishing dashboards.
- Continuous improvement of approval process and exceptions management, promoting automation solutions.
**Skills**:
**TECHNICAL ESSENTIALS**:
- Good overall knowledge of IT Security threats and security solutions (Risky protocols, administration principles, Risk vectors on an IT infrastructure)
- Network principles (IP, Protocols, Network segmentation)
- Good culture of Cloud solutions (IaaS, PaaS, Saas)
- General IT culture (Application security, Environments, Workstations)
**SOFT SKILLS / BACKGROUND**:
- Fluent English written and spoken. Strong written, oral, and interpersonal communications skills.
- French is a plus
- Bachelor in Computer Science or equivalent.
- Minimum 2 to 4 years experience in cybersecurity and production environments.
- Client Focus
- Capable of communicating
- Ability to coordinate with offshore teams; interface with customers, CISO teams, security architects and administration teams for issue resolution.
- Project lifecycle experience, capability to follow up action plans.
**CAPABILITIES**:
**Available for On Site Services**: 09:00 to 18:00 regular/variable schedule range.
**PRIMARY LOCATION**
**ES-MD-Madrid**
**JOB TYPE**
**Standard / Permanent**
**JOB**
**INFORMATION TECHNOLOGY**
**EXPERIENCE LEVEL**
**At least 3 years**
**SCHEDULE**
**Full-time**
**REFERENCE**
**BNP-000768**
**APPLY**
***
- (REF: BNP-000768)