Workplace security specialist
Luxembourg, Luxembourg
Applications have closed
Netcompany-Intrasoft
Netcompany-Intrasoft is a leading European IT Solutions and Services Group with strong international presence and expertise, offering innovative and added-value solutions of the highest quality to a wide range of international and national...Company Description
We are Netcompany-Intrasoft, a leading European IT Solutions and Services Group with strong international presence and expertise, offering innovative and added-value solutions of the highest quality to a wide range of international and national public and private organizations. More than 500 organizations in over 70 countries worldwide have chosen the company's services and solutions to fulfill their business needs.
For more information regarding our company, current projects, and openings around Europe, please consult our website: www.netcompany-intrasoft.com.
Job Description
A day in the life of an Interconnection Security Agreements
The core mission of the Security Directorate is to protect the security of Commission staff, information and buildings, and to ensure safety standards are met.
Compliance and inspections sector of Information Security & Inspections Unit (HR.DS.4) in partnership with other Commission services and stakeholders, provides high quality corporate service Interconnection Security Agreements in the domain of compliance and inspections, enabling the successful implementation of the Commission's Digital Transformation and EU policies.
Your main duties will be:
- Management/coordination of the workflow through its four main establishment and amendment phases, i.e.:
- Preparation (e.g. customer support and consultancy about the agreement and procedure types, workflow phases, relevant contact points, etc. Preparation of the interconnection security agreement drafts according to the requests from the customers, etc);
- Validation (e.g. validation of the security agreement documents, on-site verification/compliancy check, assignment of the security agreements to other involved services for validation);
- Signature (e.g. performing the necessary steps of the signing circuit)
- Implementation (e.g. assigning the security agreement to correct service for implementation, informing customers at the end of the procedure via foreseen channels).
- Providing customer support (e.g. by phone, email or corporate incident management tools) during the establishment/amendment procedure and during the whole lifecycle of the security agreement (e.g. providing customer with relevant contacts during incident handling);
- Close interaction and information exchange with the stakeholders involved in the workflow (e.g. for the verification of the current firewall implementations);
- Management of the supporting inventory databases and archives;
- Inventory of implementation review/update actions in collaboration with relevant stakeholders of internal IT service provider;
- Contribution to the preparation and maintenance of the service descriptions/documentation related to the interconnection security agreements;
- Contribution to the improvement of the existing workflows and management tools, which is a continuous task, performed in collaboration with services of internal IT service provider involved in the workflow with the aim to shorten the time for service provision and make the different steps more transparent for the customers. The tasks cover both organisational (i.e. streamlining the tasks and responsibilities of the different involved teams) and technical aspects (i.e. improvements of the main working tools) of the workflows;
- Definition of compliance and inspection methodology/methods in the domain of external network connections;
- Coordination of activities related to compliance and inspection in the domain of external network connections.
- Assistance with design and support effective solutions to satisfy business objectives, compliance and security requirements for mitigating security risks;
- Gather data in order to identify customer needs, use the information to identify requirements in respect of confidentiality, integrity and availability and design corresponding security measures;
- Assistance with identifying complex security-related issues;
- Conducting security risk assessments in Digital Workplace context;
- Conducting security assessments of information systems. Evaluate security solutions, e.g. in IT security plans of EC CISs, network diagrams or architectures and make recommendations for enhancements in the implementation of existing or planned solutions;
- Assistance with integrating different security technologies in a complex environment.
- Integrating end point security solutions but with knowledge of backend server and network infrastructure;
- Assistance with planning security measures for EC CISs. Identify the strengths and weaknesses of alternative solutions, conclusions or approaches to problems. Determine how a CIS should work and how changes in conditions, operations, and the environment will affect deliverables;
- Assistance with the establishment of IT security plans, security baselines and security operating procedures;
- Interaction with the business analysts, customer, users, project leaders and the developers;
- Assistance with briefings on security measures for technical and non-technical audiences.
Qualifications
If you have
- at least 5 years of specific expertise in Security standards applying to European Commission information systems (min. competence level 3)
- at least 2 years of specific expertise in IT security risk assessment methodologies (min. competence level 3)
- Excellent knowledge of information security principles, internationally recognised standards in the field IT security and orresponding implementations
- Good knowledge of workplace and network security solutions/technologies
- Knowledge of IT Security Compliance Management
- Ability to learn efficiently and fast
- Ability to give business and technical presentations
- Ability to apply high quality standards
- Ability to cope with fast changing technologies used in field of workplace and network security
- Very good communication skills, adaptable to audiences ranging from senior management to technology specialists
- Strong analytical and problem-solving skills
- Capability to write clear and structured technical documents
- Ability to participate in technical meetings and good communication skills
- The ability to work in a proactive and independent manner, with a focus on priorities, communication and decision-making capacities
- Good organization, coordination and planning skills
- Excellent ability to understand, speak and write in English (Spoken: 5; Written: 5)
- Capability of integration in an international/multicultural environment, rapid self-starting capability and experience in working in team
- Ability to participate in multilingual meetings
- Ability to work in multi-cultural environment, on multiple large project
- Excellent team player
- Proactive attitude, communicative and customer-oriented
- High degree of discretion and integrity is required as the applications managed and maintained in HR.DS.4 contain personal and confidential data
…then this position is suitable for you!
Additional Information
We ensure equal opportunities, treatment, and consideration to all candidates. Discrimination based on sex, racial or ethnic origin, religion or belief, disability, age, sexual orientation or marital status, physical or mental disability, or any other factor protected by applicable laws and regulations is prohibited. At Netcompany-Intrasoft we respect human rights as part of our culture, and we focus on creating a positive workplace in which all employees are valued and where diversity and inclusivity are welcomed.
The safety and well-being of our employees remain our top priority. Please note that Netcompany-Intrasoft’s recruitment process is being conducted virtually due to preventive measures against the Covid-19 pandemic.
Our culture
Our people are the most important element of our success. Our work life is well defined by our set of fundamental Values:
Be the link of a great team that forms a unique network across departments, countries and business units and operates with trust, open communication, transparency and respect.
We make it happen with our expertise, accountability and solution-driven attitude. We always strive for improvement, always with an eye on the big picture.
We learn & evolve by embracing a culture of building on our experiences, sharing our knowledge and developing our skills. We are always open to new ideas and invite all our colleagues to contribute with theirs.
We fuel creativity in every aspect of our everyday life at Netcompany - Intrasoft; in the solutions and products we design and the initiatives we undertake.
We share customer success by understanding their unique needs, corresponding to their vision, and exceeding their expectations.
#BePartOfSomethingGreat!
*Please submit your CV in English
All applications will be treated as strictly confidential
Tags: Compliance Firewalls Network security Risk assessment Security assessment
Perks/benefits: Team events Transparency
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Senior Security Analyst jobs
- Open Information Security Specialist jobs
- Open Staff Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Manager Pentest H/F jobs
- Open Senior Information Security Analyst jobs
- Open Senior Cyber Security Engineer jobs
- Open Cyber Security Specialist jobs
- Open Principal Security Engineer jobs
- Open Product Security Engineer jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open IT Security Analyst jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Cybersecurity Analyst jobs
- Open Senior Information Security Engineer jobs
- Open Chief Information Security Officer jobs
- Open Cybersecurity Consultant jobs
- Open Consultant SOC / CERT H/F jobs
- Open Security Specialist jobs
- Open Cybersecurity Specialist jobs
- Open Senior Penetration Tester jobs
- Open Sr. Security Engineer jobs
- Open Security Researcher jobs
- Open Senior Security Architect jobs
- Open Security Operations Analyst jobs
- Open ISO 27001-related jobs
- Open Clearance-related jobs
- Open Network security-related jobs
- Open Windows-related jobs
- Open Application security-related jobs
- Open Agile-related jobs
- Open Pentesting-related jobs
- Open Vulnerability management-related jobs
- Open GCP-related jobs
- Open Analytics-related jobs
- Open SaaS-related jobs
- Open CISA-related jobs
- Open IAM-related jobs
- Open Threat intelligence-related jobs
- Open APIs-related jobs
- Open Java-related jobs
- Open Security assessment-related jobs
- Open DevOps-related jobs
- Open Malware-related jobs
- Open Kubernetes-related jobs
- Open Security Clearance-related jobs
- Open CI/CD-related jobs
- Open IDS-related jobs
- Open CEH-related jobs
- Open EDR-related jobs