IT Security Specialist
- Job Ref: 3791
- Location: Dublin, Ireland
- Type: Permanent
OverviewAn experienced Information Security Analyst is currently being sought by my client. This is an ideal opportunity to work for one of the world’s largest financial institutions with exposure to cutting edge security technologies.
Information Security Analysts are required to have working knowledge of security principles & their application to Information Security Risk Management. Experience in performing application, vendor and infrastructure risk assessments is essential.
This is an Information Security Governance role. This is not hands-on role in terms of implementation or operations. However, a technical background in some combination of networking, firewalls, security monitoring, IT Development, vulnerability management and/or IAM is considered an advantage. While not essential, security architecture and penetration testing experience is a distinct plus.
Key Responsibilities Include:
? Engaging with stakeholders to carry out Information Security risk assessments ? Assuming a solutions oriented focus in support of business goals ? Performing vendor and supply chain risk assessments ? Oversight of: - Third party security operations - Information Security monitoring including coverage, alerting and reporting - SIEM & security event investigation - Vulnerability Management (VM) processes - Identity & Access Management (IAM) processes ? Supporting the security Incident Management process as required ? Management operational security reporting
Essential Criteria The following skills are essential: ? Minimum 3 years’ Information Security experience, with up to date experience of the threat landscape ? Strong technical background in some or all of the following - networking, server, middleware, database and application security ? Exposure and understanding of a broad range of security controls including firewalls, proxies, IDS/IPS, network segmentation, DLP, VM, SIEM, IAM/PAM, antivirus technologies etc.
Desirable Criteria ? Familiarity with prevailing Information Security risk management frameworks and guidelines such as COBIT, ISO 27001/27002, ISO 27005, ISF IRAM2, ISACA RiskIT, and NIST, CIS, ASD & OWASP ? Systems administration of one or more of the following Linux, Windows server administration including Active Directory and/or iSeries AS/400 ? Knowledge of : o SIEM Solutions - HP ArcSight o Qualys vulnerability scanning solutions o Dell/Quest Identity Manager o Firewall change management & monitoring processes