от компании (организации): ICL Services в городе (населённом пункте): Москва, Россия
в отрасли экономики "Информационные технологии, интернет, телеком" → "Компьютерная безопасность"
с заработной платой: по договоренности
Вакансия № 20811872 добавлена в базу данных сайта Работа в Москве и Московской области (МО, Подмосковье): Вторник, 24 сентября 2024 года.
Дата обновления вакансии № 20811872 на сайте Работа в Москве и Московской области (МО, Подмосковье): Четверг, 14 ноября 2024 года.
Обращаем Ваше внимание, что на момент обращения к работодателю вакансия № 20811872 может быть уже занята. Администрация сайта Работа в Москве и Московской области (МО, Подмосковье) приносит извинения за доставленные неудобства.
Требования к опыту работы:
3–6 лет
Тип занятости:
полная занятость
График работы:
удаленная работа
Дополнительные сведения о вакансии: Information Security Manager
The role holder has IT technical and Information Security Management background, interacts with members of the internal and customer security teams to provide high-quality security service, interacts with other delivery units and internal teams within information security projects and information security incidents coordination, leads information security projects and improve customer’s information security posture. The role holder manages security activities such as security risk management, security incident response, changes, policies, and governance.
Remote work can be discussed.
Responsibilities:
- act as a Security related point of contact for customer/account and enhance Information Security in collaboration with customer IT Security teams; Oversee other IT or/and IT Security Teams / Third parties for Information Security matters and act as a key liaison between them;
- manage Information Security risks in order to ensure that customer information security risks are properly identified, assessed and handled;
- maintain and ensure compliance within customer’s environment to Information Security Management System (ISMS) used by customer (e.g. ISO 27001, PCI-DSS, etc);
- assure the operational security of the provided services and compliance with the contractual security obligations and documented security policies and procedures;
- define, implement, disseminate and control of Information Security policies and processes;
- support customer/account team in the planning and setting up of the external penetration testing/security audits as well as support them in the risk treatment plan and remediation post the penetration testing/security audits;
- provide and propose Information Security improvements within customer IT infrastructure based on best practices;
- organize, attend and follow up on Information Security related meetings with customer and account team in order to discuss and make decisions regarding security related topics;
- act as an escalation point for security events and major security incidents, communicating with the account and customer where necessary. Providing input into major security incidents;
- assure compliance against the customer’s corporate PAM process;
- support vulnerability management process: collate report and provide advice with customer / account team on patches to be applied. Manage exceptions from the process;
- provide a review, an assessment and approval on architecture designs & service changes to existing customer infrastructure and information systems;
- provide reporting on Information Security and oversee of security services KPIs;
- define, plan implementation and upgrade of security measures and controls within customer environment.
Requirements:
- effective management skills and high attention to details;
- learn, assess, test and select new security solutions and technologies on the market in order to use good knowledge of business benefits that these new security solutions/technologies can bring to the customer;
- ability to prepare cost estimates for security projects/changes and identify integration issues;
- ability to use good knowledge of International Information Security standards and frameworks (such as ISO 27001/27002, COBIT, PCI, NIST, CIS Controls etc.) in order to improve information security posture and governance;
- security risk management (Identification, assessment, analysis and treatment/define mitigation strategies) and Cyberthreat modeling;
- a good technical background in either Networks, Security, Unix/Wintel:
We offer:
- experience exchange with colleagues all around the world;
- competitive compensation depending on experience and skills;
- regular assessments and salary reviews;
- benefits - medical care, sports;
- free English classes;
- opportunities for self-realization;
- friendly team, enjoyable working environment, transfer to office;
- flexible working schedule;
- corporate and social events;
- employment according to the Labor Code of the Russian Federation, “white” salary;
- training and certifications are organized and paid by the company;
- vacation bonus after 9 months of work;
- an extended medical insurance policy;
- partial compensation of costs on fitness;
- food subsidies;
- newcomers from other towns are provided with relocation help.
Откликнуться на эту вакансию: Information Security Manager
Предыдущая вакансия:
Вакансия № 20811869 на должность Педагог французского и немецкого от компании Мир языков в городе (населенном пункте) Домодедово