Beschreibung
The Remediation Support Specialist performs an important function in the Cyber Security Vulnerability Management & Infrastructure Security department within the Bank’s CISO organization.Tasks
Interpretation and understanding of scanner tool results, including network scanner and vulnerability scanners. This includes liaison and cooperation with internal vulnerability scanning team who provide independent vulnerability results (technical rating);
Plan, lead and support stakeholders in remediation of vulnerabilities
Act as an escalation point of contact for team members, vendors and stakeholders
Be able to review scope for penetration testing and risk ratings for vulnerabilities
Be able to independently drive discussions according vulnerability risk ratings, impact of vulnerabilities to the environment, mitigation and remediation actions
Be able to deliver projects under rigid schedule
Provide action and remediation plans, track in-time remediation and escalations
Be able to track and close security topics such as open high risk findings or assessments
Provide technical advice to Senior Management on security topics
Develop presentations to Senior Management on new initiatives or budget approvals
Skills / Experience
Bachelor’s degree in Computer Science, Engineering, Information Security or equivalent
At least 10-12 years of IT Security experience, ideally in penetration testing or vulnerability assessment in large organization
A strong understanding of security concepts, vulnerability management and exploitation methods. Especially in the infrastructure and OS space such as Windows and UNIX
A good understanding of web technologies and web security hardening techniques, including IIS/Tomcat and Apache
Written and verbal fluency in English is important as all project related communication will be in English language.
Excellent analytical skills, with the ability to breakdown complex problems into actionable steps.
Ability to communicate IT security issues to other business areas in technical and non technical language
CISSP, CISM, CEH or SANS Certification (GWAPT)
Knowledge of ITIL framework would be advantage
Previous experience in project management preferred especially support and tracking remediation
Start: asap
End: 31.12.2014 (plus option 2015)
Contract: freelance, fulltime, onsite
Location: Frankfurt/Main Area
Please contact:
Birgit Bocks
Fon
Mobile