OBS! Ansökningsperioden för denna annonsen har
passerat.
Arbetsbeskrivning
We are now looking for a Digital Security Expert.
Digital Security support in projects:
The client is driving on a continuous basis a multitude of IT projects. Some of these projects are very business centered while others are deep core IT projects. However, given the increasing dependence of Securitas on Digital Systems, it is important these IT projects deliver Digital Secure systems. To support this objective, the Chief Digital Security Officer is looking to extend his team with a Digital Security Project Security Expert.
Are you an experienced digital security professional with a passion for providing advice from the start to the finish in an IT project, energized by the opportunity to optimize digital security in a rapidly changing organization? Then maybe this is something for you.
During the project lifecycle, you are responsible for performing the following activities:
Understand the business & IT context and guide the project stakeholders in classifying key data and system assets.
Identify Digital Security Risks through the review of the architecture and through threat modelling. In some cases, a logical & conceptual architecture will need to be made by yourself in order to be able to perform a Digital Security Risk review.
Advise IT asset - and Business Owner stakeholders on the Digital Security Risk posture and the possible remediations
Propose a set of Security Controls and requirements
Design the Security Controls and provide guidance to the IT Project stakeholders for the design and building. Strive for standardization and a maximum reuse of existing security services.
Assist in defining the security requirements for a sourcing track and assist in the Digital Security evaluation.
Define the Digital Security Test plan by formalizing the threat & test cases to test systems are securely built as designed
Together with the Chief Digital Security Officer, the enterprise security architect, the other ‘Digital Security Capability Managers, you will work with architects (enterprise- & solution-), engineers, security officers and service owners and - managers throughout the global organization to ensure that Digital Security is embedded in the different projects
Your profile and qualifications:
To succeed in this role, we believe that you need to be a pro-active people-centric individual. You have the capability to switch between different levels of abstraction easily. Your style of communication is engaging and educational. You are comfortable giving expert advice to various levels in the organization and you actively seek input from your expert peers.
You are familiar with security frameworks such as SABSA, NIST, ISO27K, CIS20, ISACA, etc. and have multiple years of experience in evaluating IT architectures from a Digital Security and Compliance angle.
You are familiar with Hybrid Cloud architectures and the security thereof, service-oriented IT operating models, IT Application Security, Identity & Access Management and Infrastructure security.
You have worked previously in large organizations in an open, multi-cultural environment.