Description
Security Engineer: Microsoft, Vulnerability Management, Nessus
My client, a world renowned global organisation based in Prague is seeking an IT Security Engineer with at least 2 years professional experience as Microsoft systems administrator or similar. The ideal candidate will have around 1 years experience using vulnerability management tools such as Nessus and 1 years experience using Varonis DatAdvantage.
Responsible for establishing cooperation among the members of the infrastructure and application management teams who are involved in internal information security tasks. Champions vulnerability management process and access reviews together with Business Information Managers and Business functions.
Background includes professional "hands-on" operational experience and above average skills in software development, system engineering (Linux and Windows Server) and network and Web vulnerability assessment tools.
Ensures that associated work instructions and other documentation is kept up to date and optimized.
Coordinates penetration tests and code reviews where applicable.
Contributes to functional/design specifications, Installation documents, process descriptions where applicable.
Ensures that internal information security policies are applied.
Responsible to continuously consult infrastructure and application management team members in matters of information security.
Strong technical and analytical skills, as well as creativity in presenting alternatives to remediate information security risks with time and budget constraints (eg when vulnerabilities are determined).
Responsible to report own achievements and activities including hours spent to designated manager.
In addition responsible to report associated risks and issues including possible resource constraints to designated manager.
Good stakeholder assessment, interaction and communication skills and understanding of user implications respectively business needs.
Effective decision making capabilities.
Stay abreast on the latest industry trends and best practices in information and IT security. Is able to effectively relate his/her technical expertise to varying organizational needs. Ability to work independently to define, manage, and complete activities.
Strong verbal, writing, documentation and communication skills Pre-requisites in addition are high ethical standards, flexibility and agility.