Description
SECURITY INCIDENT HANDLING EXPERT WINTEL
For one of our projects in the banking sector we are currently looking for a Security Incident Handling expert WINTEL
It would be your role to:
- Develop and document information security procedures to enforce information security standards
- Follow-up activities and control quality of work done by external company:
- Qualify escalated events detected by SEM, TSCM tools or provided by other sources
- Process detailed analysis and correlation investigations to qualify non solved and escalated events
- Provide L3 support for security incidents: Analyze and qualify escalated events, Initiate major security incident process
- Validate rules/waivers which filter out all security related events and provide qualification rules
- Identify and coordinate remediation of vulnerability findings within critical Wintel environments
- Relay the information from CIRT to the specific Technology Infrastructure teams in order to allow for deeper identification of Wintel environment vulnerabilities and for a specific investigation and response activities
- Report unauthorized accesses to Level 2 Management
- Be part of on call support team (24/7)
- Coordination with other teams of security deficiency resolutions
- Follow-up of security related alerts and recommending corrective actions
- Define and implement security incident mitigation solutions
- Draw lessons learned from security incidents
- Make recommendations on solutions to prevent security incidents
- Coordinating and conducting IT forensics investigations for the business: Request to identify, collect, analyze and report on various malware related or other threats to security service providers in order to provide actionable intelligence to the bank
- Recommend implementation of new detection rules for these malwares to eFraud team or internally
- Control and validation of security patching process and reassessment of patching recommendations
- Control and authorize IT user access via role based access control (RBAC) for privileged users
QUALIFICATIONS
For this role you need:
- Broad ICT knowledge
- Strong knowledge of Wintel environments
- Microsoft technologies
- Security techniques
- Antivirus/malwares
- Knowledge of Security monitoring tools (e.g. NetIQ, tripwire) and/or application security (databases, middleware, web servers, etc) is a plus
- ITIL V3 -Incident and Problem management process knowledge
Non Technical Competences:
- Highly customer oriented and who has an excellent service attitude
- Analytical and has a synthetic turn of mind
- Excellent communicator, who can be assertive towards multiple stakeholders
- Team worker
- Able to work in stressful situations
- Organized and who follows a "problem-solving" and "results-oriented" approach
- You have no fear of paperwork
- You have a "can-do" type of mentality
- Excellent written and spoken knowledge of English, knowledge of Dutch and/or French
- Flexibility (on-call 24/7 in case of major incidents)
- Experience in Audit and Risk management is a plus
ADDITIONAL INFORMATION
If you fit the description and you would like to apply, please send your resume as soon as possible, We prefer working with freelance / temporary candidates.We also consider employees of a third-party. If you have any questions about the role, don't hesitate to contact us for more information.