Cyber Defence Advisor

Brussels  ‐ Onsite
This project has been archived and is not accepting more applications.
Browse open projects on our job board.

Description

Cyber Defence Advisor

Context

The Security department supports IT and Business Units to develop adequate solutions in Information Security and Risk Management practices.

Their mission:

  • to enable sound and formal information security risk decision making by management, and
  • to help management with implementing a proper information security management system.

They commit to deliver upon four objectives:

  • enable the extended enterprise;
  • Counter cybercrime;
  • Protect information systems;
  • Manage security risks.
  • Consequently, the vision of the team is to support Counter cybercrime objective by demonstrably best in class' preparation and response to unauthorized cyber activity.

    This is done by providing the following services:

    Proactive

    - support & intelligence to help prepare and secure bank systems in anticipation of cyber-attacks. Vulnerability Management that ensures the risk of a security breach originating from a vulnerability on infrastructure or application level is strictly controlled.

    Reactive

    -Triggered by a request/incident/event identified by an intrusion detection system or reported by human.

    Function

    You will carry the following responsibilities:

    Vulnerability Detection.

    Support the portfolio of tools and processes to find vulnerabilities.

    It includes:

    • A recurrent infrastructure and application scanning,
    • Ethical Hacking, Penetration Testing;

    Vulnerability Qualification. Ensure prompt qualification of vulnerabilities.

    Vulnerability Remediation. Coordinate and provide support to IT teams with their vulnerability remediation activities which basically equates to patch management processes.

    Vulnerability Control. Provide reporting to all levels of stakeholders on vulnerability remediation status. Maintain relevant solution in central Governance, Risk and Control tooling.

    Vulnerability Governance

    • Ensure requirements are captured in bank policies and standards;
    • Describe and implement clear Roles and responsibilities;
    • Maintain functional architecture framework;
    • Maintain and automate the Process;
    • Define remediation SLA and ensure its endorsement by all levels.

    Required experience

    • 3-5 years of experience in Information Security
    • Network security expert
    • Working knowledge of entire TCP/IP or OSI network protocol stack, including major protocols such as IP, ICMP, TCP, UDP, SMTP, POP3, HTTP, FTP, and SSH.
    • Good understanding of IT security technology and processes (secure networking, web infrastructure, WinTEL, UNIX, etc.);
    • Security Incident Management; CSIRT.
    Start date
    n.a
    Duration
    6 months+
    (extension possible)
    From
    Base 3
    Published at
    27.01.2017
    Project ID:
    1277536
    Contract type
    Freelance
    To apply to this project you must log in.
    Register