Description
Role: Security risk Engineer
Location: Amsterdam
Duration: Contract
Salary: as per Market Standard
Job Description:
Experience:
• You have at least seven years of experience in IT.
• You have at least three years of experience with IT Risk and IT Security.
• Preferably: Certified IT or EDP auditor, (e.g. CISA )
• Preferably experience or education in IT audit.
• Preferably strong knowledge about the seven Key Control Areas of IT Risk.
Behavior and competencies:
• You’re hands-on, give pro-active advise, deliver solutions and answers, explain weaknesses and find solutions to overcome them
• Ability to liaise and coordinate, knowledge sharing with on-site devops teams.
• Able to work independent, taking initiatives: self-starter
• Being able to overcome resistance, being able to convince.
• Fluent in English (spoken and written) is mandatory.
Additional information:
The key control areas of IT risk:
• Foundation Controls for Information and Technology Risk management (Non Financial Risk).
• Including BIA-Business Impact Assessment and DRA-Detailed Risk Assessment.
• IAM – Identity and Access Management
• PCS – Change Management
• SMO- Security Monitoring - including security even monitoring and pentesting
• Platform Security – including Platform Security Baseline document, patch management, Lifecycle management
• Operational Resilience – including resilience by design, backup and recovery, disaster recovery
• Cybercrime Resilience – including DDOS testing
Location: Amsterdam
Duration: Contract
Salary: as per Market Standard
Job Description:
Experience:
• You have at least seven years of experience in IT.
• You have at least three years of experience with IT Risk and IT Security.
• Preferably: Certified IT or EDP auditor, (e.g. CISA )
• Preferably experience or education in IT audit.
• Preferably strong knowledge about the seven Key Control Areas of IT Risk.
Behavior and competencies:
• You’re hands-on, give pro-active advise, deliver solutions and answers, explain weaknesses and find solutions to overcome them
• Ability to liaise and coordinate, knowledge sharing with on-site devops teams.
• Able to work independent, taking initiatives: self-starter
• Being able to overcome resistance, being able to convince.
• Fluent in English (spoken and written) is mandatory.
Additional information:
The key control areas of IT risk:
• Foundation Controls for Information and Technology Risk management (Non Financial Risk).
• Including BIA-Business Impact Assessment and DRA-Detailed Risk Assessment.
• IAM – Identity and Access Management
• PCS – Change Management
• SMO- Security Monitoring - including security even monitoring and pentesting
• Platform Security – including Platform Security Baseline document, patch management, Lifecycle management
• Operational Resilience – including resilience by design, backup and recovery, disaster recovery
• Cybercrime Resilience – including DDOS testing