Beschreibung
Tätigkeit:1 x Security Analyst
The main job purpose is to perform security analysis of architecture and design for various types of application and networks. Further purpose is ISMS implementation and audits.Duties and responsibilities The primary job duties and responsibilities are Evaluation of projects’ security requirements compliance status Review design documentsConduct interview sessions Risk identification, assessment and evaluation Identify security risks in project design Determine business impacts and risk likelihood Evaluate risk responses and mitigation measures Administer the corresponding risk matrix Negotiate a risk management plan and prepare sign-off Evaluate deployed security controls
Review low level documents with security impact (process documentation, low leveldesigns, communication matrices, operations handbooks)Coordinate security testing (planning, test criteria, scope) Evaluate test results Manage risks for transition in to productionAgree on review plan Acquire management decisionSupport handoverISMSDesign and implement Information Security Management Systems Performing gap analysis Auditing of ISMS design and implementation
Skills:
The qualifications required to successfully perform the job include:
Proven track record of application security and/or risk management activities
Good knowledge of web security technology and principles
Experience in evaluating the security posture of enterprise systems (application servers, middleware e.g. JBOSS, Weblogic; web servers e.g. Apache and web formats, e.g. AJAX, JSON)
Knowledge of REST and SOAP APIs; authentication protocols (SAML) and concepts (SSO)
Good knowledge of network security technology and principles
Experience in evaluating the security posture of enterprise networks and networking systems (routers, switches, firewall gateways, IPS, database monitors)
Knowledge in ISO implementation and auditing
Certification in relevant areas (ISO, ISO, CISA, CISSP, CISM, NIST)
1 x Security Architect Data Protection
The job purpose is to perform conception and design for data protection – and data leakage solutions and end point protection. Duties and responsibilities The primary job duties and responsibilities are Conception and design for data protection solution Develop high level architecture and design documents Integrate DLP into corresponding systems (Monitoring, Mail hygiene, Archiving etc.) Develop policies and procedures for data classification and protection
Skills:
The qualifications required to successfully perform the job include:
Candidate must have hands-on implementation and troubleshooting experience with DLP solution (Ideal Secure Islands)
Experience is Design/Architecture of DLP program and in enterprise level deployments of Host
Based DLP and Network DLP solution ( Network Prevent, Discover, Monitor Windows Active Directory
Windows Right Management
Encryption and Certificate
Bitte senden Sie uns einen aussagekräftigen WORD-CV in Anlehnung an die geforderten Skills der Projektvakanz, die konkrete und zugesicherte Verfügbarkeit und den Stundensatz (allin) zzgl. Ust. an