Eu - Senior Security Management Specialist - Strasbourg, France - The White Team

The White Team
The White Team
Entreprise vérifiée
Strasbourg, France

il y a 2 semaines

Sophie Dupont

Posté par:

Sophie Dupont

beBee Recruiter
Description
**Tasks

  • Support the Agency's Information Security Officers in the management of information security and business continuity across organizational
- business processes and information systems;

  • Develop security controls in the context of the agency's information security framework.
  • Perform risk assessments;
  • Develop Information Security Management System (ISMS)procedures;
  • Develop conceptual, logical and physical security models as appropriate;
  • Draft security policies, standards, procedures and guidelines in accordance with ISO27001;
  • Develop security plans and documentation (e.g., risk treatment plans, security test plans);
  • Develop business continuity and disaster recovery plans;
  • Perform security assessments and audits;
  • Perform ISMS control audits;
  • Perform ISMS gap assessments;
  • Design security controls in accordance with agency information security policies and standards;
  • Provide assistance in formal accreditation process for information systems handling EU sensitive and classified information.
**Education Requirements

  • Minimum 4 years of relevant education (master or equivalent) after the secondary school. Minimum Experience Requirements
  • Minimum 6 years of IT professional experience, of which
  • Minimum 4 years of relevant professional experience in Information Security Management.
**Qualifications, Knowledge and Skills

  • ISO27001 implementation, management and audit;
  • Relevant standards and good practice in information security management;
  • Risk management;
  • Governance, Risk & Compliance (GRC) practices and controls;
  • ISO27001 security control audits and assessments;
  • Developing security policies, standards and guidelines in accordance with ISO27001 and EU security policies and standards;
  • Design, implementation and assessments of good practice security control frameworks such as SANS Top 20 Critical Controls, OWASP Application Security Verification Standard;
  • Secure development processes (Security and Privacy design);
  • Implementation of EU data protection principles in information system design and processes.
  • Certified Information Systems Security Professional (CISSP);
  • Certified Information Security Manager (CISM);
  • Certified Information Systems Auditor (CISA);
  • ITIL/ITIL V3;
  • BSI ISO27001 Lead Auditor Qualification.
Plus d'emplois de The White Team
Voir tous les emplois de The White Team