Network and Security Engineer
UniSystems S.A.
Luxembourg
il y a 6j

Description

  • Propose a methodology for dealing with IT Security requirements in Client's projects and interconnections with external parties, based on existing Client's security rules or well-known security frameworks as CIS or NIST
  • Describe and document general security requirements as part of the design of the new IT infrastructure, and relevant CMS, and propose adequate security solutions
  • Perform Business Impact Assessments’, in collaboration with the relevant stakeholders, in particular the business owners and system owners and define the IT security needs which guarantee the required security of the IT systems;
  • Within the project team, undertake an active role in this joint connection project, gathering business requirements from the counter parties and elaborating the security requirements and measures to implement secure connections, in line with internal and national standards;
  • Coordinate the implementation of the secure connections, participating in drafting the test plan and performing testing, namely security testing, reporting and auditing;
  • Define the required protocols and procedures to maintain and manage the secure connections;
  • Define the security requirements and propose measures and solutions to implement security by design for automated data exchanges;
  • Identify applicable security hardening guidelines specific to various technologies and adjust them to the project's context and needs;
  • in collaboration with other technical experts implement the security controls;
  • Describe and implement security specifications for various IT systems infrastructure, network, OS, middleware, front end and backend applications, on premises or cloud based applications in close collaboration with the Project's solution architect;
  • Contribute to the development and documentation of security procedures, and other documents related to security in projects and future operations;
  • Propose and implement the tools for performing automated code reviews and security tests audits of applications prior to their deployment in production;
  • Manage and operate all IT security aspects related to implementation of Project's infrastructure, relevant CMS, member states connections, new building ,Project's cloud infrastructure.
  • Qualifications

  • Master Degree in IT (5 year studies) or related field with a minimum of 11 years of professional IT experience.
  • Proven experience of working as a member of an ICT project team
  • Proven knowledge or certification on security standards ISO27001 level Practitioner or Expert ;
  • Certifications in security areas as CISSP, CISSP-ISSAP, CISSP-ISSEP, CISM, CEH, ECSS, s-EHP, S-CITSO or similar;
  • Network design security solutions / technologies, including security zones, secure connections, VPN, IPS, IDS, network and application firewall;
  • Data security in virtualised environment, with encryption technologies and other security controls;
  • Server hardening and monitoring VMs, OS (Windows 2012, 2019, RedHat Linux), AD Policy groups, Windows 10, SQL hardening;
  • Security best practices for IBM components (Case Manager, BAW, Filenet) and Java based applications.
  • Expertise in the following domains would be an asset :

  • Security Information Architecture knowledge proven by certification TOGAF9-Foundation;
  • Vendor specific certifications of level professional / expert from Cisco / Microsoft / IBM / RedHat / Checkpoint;
  • Experience with security measures in an Agile development environment;
  • Security technologies and solutions for containers (Dockers, Kubernetes);
  • SIEM solutions for centralized logging and monitoring;
  • OWASP implementation and assessment of code security.
  • Knowledge and skills

  • Knowledge of security principles, internationally recognised standards and implementing security management methodologies and tools;
  • Knowledge in telecommunication, datacentre and network security;
  • Knowledge of risk assessment methodologies;
  • Knowledge of ITIL best practices in ICT operations;
  • Knowledge of ICT infrastructure and systems;
  • Knowledge of security monitoring systems;
  • Very good knowledge of written and spoken English is required
  • The Constsultan must be eligible for obtaining a security clearance to handle European Union Classified Information up to the level of "SECRET UE"
  • Signaler cette offre d'emploi
    checkmark

    Thank you for reporting this job!

    Your feedback will help us improve the quality of our services.

    Postuler
    Mon email
    En cliquant sur « Continuer », je consens au traitement de mes données et à recevoir des alertes email, tel que détaillé dans la Politique de confidentialité de neuvoo. Je peux retirer mon consentement ou me désinscrire à tout moment.
    Continuer
    Formulaire de candidature