Context of the mission/objective(s) of the job
Responsible for overseeing IT security operations, managing the members of the SOC team activities and coordinating with security engineers.
Responsible for implementing IT security policies, creating protocols and processes.
Addresses IT security risks and issues on an organizational and technical level.
Coordinates IT security activities and provides support in various IT security services domains.
Supervises and supports the activity of the SOC team, measures and reports their performance metrics.
Runs compliance reports and supports the audit process.
Responsibilities
Coordinate IT security operational activities with providers as a member of Client's EU Security Operations Center
Coordinate and perform threat and vulnerability management activities, identify risks, recommend treatment plans and provide communicate information
Coordinate and perform security incident management activities, including detection, response and reporting
Monitor and report on technical and operational IT security controls
Recommend and implement security controls to meet security policies, legal, regulatory and audit requirements
Report on compliance with security policies
Propose changes to existing IT Security policies and procedures to ensure operating efficiency and compliance
Provide expert guidance to projects on IT security matters
Consult with IT and security staff to ensure that security is factored into the evaluation, selection, installation and configuration of Hardware, applications and software
Work with the IT Security Manager to develop a security roadmap that addresses identified risks and business security requirements
Coach and mentor IT security staff
Stay up-to-date with IT security related technologies and competences
Prepare and conduct security awareness and security training initiatives
KPI's
Level of compliance with Information Security regulations, standards and internal policies
Number of Information Security incidents per severity
Average of response time on Information Security incidents per severity
Accuracy of threat and vulnerability analysis
Number of identified vulnerabilities
Effectiveness of remediation plans and controls for identified vulnerabilities
Mandatory qualifications, skills and experience required
Bachelor/master degree or minimum 5 years' experience in IT and IT security related matters, preferably in an international environment
Preferably holds an Information security professional certification such as Cismp
Good knowledge and understanding of Information security technologies such as:
o Access control
o Vulnerability management
o Data loss prevention
o Web Security
o Anti-Malware controls
o IDS/IPS
o IT networks
System administration
Excellent problem solving skills, capable of working under pressure
Strong information security risk-based prioritisation capabilities
Good communication skills (contacts with team, providers and internal partners)
Act as team player and hands-on mentality
Good knowledge of English and Dutch (Advantage)