Cyber Application Security Designer

Type

Contract

Date

January 28, 2019

Cyber Application Security Designer die voldoet aan volgende profielbeschrijving:

 

Your part of the deal

The successful candidate will join the Security Consulting team which is part of the Group Security division. The main responsibility for the Security Consulting team is to ensure that the technology infrastructure at Euroclear protects corporate assets from unauthorized access, modification, disclosure and destruction. Security consulting is the service owner of the logical security domain and infrastructure through the implementation of security services and infrastructure, risk assessments, requirements setting, and active participation in the project delivery lifecycle, as well as ensuring adequate processes and procedures for the security administration teams.

 

As part of the Sec. Consulting team, the main responsibilities for the candidate are:

 

– Define and advise on the control design, implementation and processes necessary to protect information systems assets

– Perform risk assessments and define application and infrastructure-related security requirements for business and IT projects.

– Advise on the high level security design of new applications, systems and/or infrastructures.

– Integration of application security in projects e.g. authentication and authorization , non-repudiation,  cryptographic controls, data protection

– Act as security subject matter expert in a security domain and be the security point of contact for the business and project teams.

– Perform security validation to ensure effective implementation of security controls.

– Define, implement and ensure the proper functioning of security trust services in line with IT security policies. Recommend and advise on new or improved security services to Cyber security Management. Ensure the adequate functioning of security services.

– Produce documented security services, technical standards or principles.

 

Your profile

The successful candidate must be a service oriented, organized and independent security professional with solid experience in the security domain or in the IT application security architecture.

 

The candidate must be a team player who communicates in an open, respectful and constructive way with his customers and peers, both verbally and in writing. The candidate will take ownership and ensure that organizational quality standards are met.

The candidate must be a very good communicator in English, both verbal and written, and able to discuss and defend the security interests with individuals and groups of senior business people as well as deep technical IT experts.

 

The candidate must have proven experience in security risk assessments, development of functional security requirements, process design and management reporting. Experience in security design, architecture and project management is a strong advantage.

 

1) Familiarity with  industry best practices in key domains: risk assessment, network security, system security (various: Windows, Linux, tandem, mainframe), identity and access management, and secure application development on all platforms.

2) Sound security design principles, based on confidentiality, integrity and availability requirements and other ISO27002 security principles are an asset;

3) Application security knowledge with a good understanding of software development and OWASP guidelines

4) Knowledge of and experience with security technologies including IDAAS and identity management platforms, PKI and cryptographic solutions,  web application firewalls, automated code review tools, secure management access, virtualization, XaaS solutions

5) Sufficient background knowledge with regard to network principles and protocols used in WAN and LAN's, DMZ, Internet security, , network segregation

6) Experience with a subset of Unix, Windows System, tandem, mainframe security and assurance

 

Preferred professional certifications are CISSP, CISM, CISA, ISO 27001 LA/LI.

 

Work Location: Brussels

 

Travel required: No

Target Start Date: ASAP


More jobs

Discover more in the same category

IT Project Manager

January 28, 2019

IT Project Manager die voldoet aan volgende profielbeschrijving:   The GBS(Group Business Solutions) division ensures Euroclear’s competi...

Read more

Data Architect

Data Tribe

August 02, 2018

Data Architect Consultant We're currently at the dawn of a new digital revolution, spearheaded by multiple new technologies, tools and ways of w...

Read more

Service Acceptance Manager CRP

Cyber Security Tribe

September 06, 2018

We're currently at the dawn of a new digital revolution, spearheaded by multiple new technologies, tools and ways of working. This is why we at D...

Read more