It security analyst 33303/511 Asturias

Descripción de la oferta

Duración de la oferta: hasta el 01/01/2019.

Funciones

The IT Security Analyst will work closely with the entire global IT team and all levels of management to ensure that cyber security services are provided as outlined. The role will also work closely with the Portfolio Management teams, partners and customers as needed at various time zones

Requisitos

Bachelor´s degree in Computer Science / Information Security or related field
- CISSP or Associate certification, CISA, CRISC or equivalent
- Experience in Information Security and/or Technical projects, including experience leading large global projects
- Experience with Cyber Security related technologies and large enterprise implementations and handle audits & compliance
- Practical knowledge of Information Security Management Systems and compliance standards as ISO 27000, , SOX and PCI.
- Understanding of key security services, such as Internet Content Filtering, Remote Access, Firewalls, IDS/IPS, Virus Protection, AAA (including 2Factor), Digital Certificates and PKI.
- Understanding of Public Cloud services.

Se ofrece

Be a Information Security subject matter expert (SME) that´s part of an information security center of excellence; offering internal management consultancy advice and practical
- assistance on information security risk and control matters.
- Maintain Security & Policy Documentations across the Geography.
- Conduct internal, external and 3rd party IT audits, risk assessments, and vulnerability scans, adhering to compliance standards as per ISO 27000, , SOX and PCI.
- Liaise with other governance functions such as physical Security/Facilities, Internal Audit, IT, HR, Legal, and Compliance
- Respond to computer security incidents, in-depth computer and network investigations. Assist in or lead incident response to a successful completion.
- Oversee installation, upgrades, and configuration of Information Security software. Make sure issues are properly coordinated, tracked, monitored and resolved globally.
- Drive for consistent deployment of information security policies, standards, procedures, guidelines and training.
- Assess Information Technology technical controls, policies and procedures for control gaps. Recommend and support deployment of mitigations design on business need and risk.
- Develop new and improve existing technical documentation.
- Perform Security Risk Assessments, identifying gaps and recommending mitigating controls.Develop and present project related material (e.g. to key stakeholders, peers, etc) .
- Support an Application Security program working closely with the DevOps, application development and QA teams
- Maintain documentation related to the Application Security program including the development of secure coding policies, procedures and standards, modification of the Software