OBS! Ansökningsperioden för denna annonsen har
passerat.
Arbetsbeskrivning
On behalf of our client we are looking for an Expert in Digital Security.
The Chief Digital Security Officer is looking to extent his team with a Digital Security Project Security Expert. It is important the IT projects deliver Digitally Secure systems.
Role and responsibilties:
During the project lifecycle, you are responsible for performing the following activities :
- Understand the business & IT context and guide the project stakeholders in classifying key data and system assets.
- Identify Digital Security Risks through the review of the architecture and through threat modelling. In some cases a logical & conceptual architecture will need to be made by yourself in order to be able to perform a Digital Security Risk review.
- Advise IT asset - and Business Owner stakeholders on the Digital Security Risk posture and the possible remediations
- Propose a set of Security Controls and requirements
- Design the Security Controls and provide guidance to the IT Project stakeholders for the design and building. Strive for standardization and a maximum reuse of existing security services.
- Assist in defining the security requirements for a sourcing track and assist in the Digital Security evaluation .
- Define the Digital Security Test plan by formalizing the threat & test cases to test systems are securely built as designed.
- You will have an operational role, mixture of architecture and risk analysis.
Together with the Chief Digital Security Officer, the enterprise security architect, the other ‘Digital Security Capability Managers, you will work with architects (enterprise- & solution-), engineers, security officers and service owners and - managers throughout the global organization to ensure that Digital Security is embedded in the different projects.
Requirements and qualifications:
- To succeed in this role, we believe that you need to be a pro-active people-centric individual.
- You have the capability to switch between different levels of abstraction easily.
- Your style of communication is engaging and educational.
- You are comfortable giving expert advice to various levels in the organization and you actively seek input from your expert peers.
- You are familiar with security frameworks such as SABSA, NIST, ISO27K, CIS20, ISACA, etc. and have multiple years of experience in evaluating IT architectures from a Digital Security and Compliance angle.
- You are familiar with Hybrid Cloud architectures and the security thereof, service-oriented IT operating models, IT Application Security, Identity & Access Management and Infrastructure security.
- You have worked previously in large organizations in an open, multi-cultural environment.
- You have a mixed profile of architecture and risk analysis. This role is operational and not just project management.
Start: ASAP
Location: Sweden or Europe.
Workload: 100%
Remote: Yes