IT Security Specialist

The Contraste Europe Group builds strong relations with its clients. It offers a range of IT services such as: Advisory, Solutions, Applications and Infrastructure. The Group’s sector focus is with finance, utilities, public institutions and non-commercial organisations. We are operating on three countries located in Belgium, Luxemburg and France.

For one of our major clients in the financial sector, we are looking for an IT Security Specialist.

Category

Infrastructure Services

Function

Consultant (Specialist)
Infrastructure Architect
Project Coordinator
Project Manager
Security Engineer

Language(s)

Dutch
English
French

Reference

190710/0639

Location

Brussels - Belgium

We offer

  • A challenging position in a fast growing company with an international presence.
  • A stimulating working environment with a really good team spirit maintained by lots of internal events (teambuilding, ...).
  • A dynamic culture focused on personal development.
  • A wide range of training and career development opportunities.

 

Your profile

Knowledge:

  • Insurance regulation (Solvency II, NBB circular)
  • IT Governance and Information Security
  • IT technical framework evaluation
  • Risk management
  • Experience on Cloud computing is expected
  • risk outsourcing framework (ENISA 2009) is a strong advange

Competencies:

  • 5+ years of relevant experience required at a senior level within an IT Enterprise Organization with proven knowledge of security architecture design, network security, mobile security, vulnerability management, and threat intelligence/analysis.
  • Active directory request command line is a plus
  • Prior extensive and demonstrable experience in a Senior level role within financial Services with significant Compliance and risk exposure.
  • Degree in Information Systems, Computer Science, Cybersecurity, Computer Engineering, or related discipline
  • Can demonstrate a deep knowledge of security policies, regulations, and compliance issues.
  • Strong ability to translate complex IT and security challenges and issues into business risks.
  • Relevant industry-accepted security certifications (CISSP, CISM, CISA, CPT, CSX, SANS, etc.) are a plus.
  • Knowledge of common information security management frameworks, such as ISO 27001, COBIT, NIST or PCI DSS.
  • Comfortable working in a collaborative environment across business and technology teams.
  • Confident communication skills and ability to provide regular management program/project briefings.
  • Solid understanding of the information security landscape, including emerging threats and security solutions.
  • Proven expertise with performing security assessments and recommending security solutions to assist with improvement of security infrastructure.
  • Awareness of systems management and operational support tools
  • Experience on Disaster recovery planning and testing is a plus
  • Strong understanding of Perimeter security controls: firewall, IDS/IPS, network access control and network segmentation; Router, switch and VLAN security; wireless security
  • Proficiency with MS-Office, and Masterize EXCEL large data volume matrix (pivot table and Vlookup mainly)
  • Programmation/automation script:  DOS, VB script, power shell, MSQL is a strong advantage.
  • Knowing Linux / UNIX is a plus

Mindset:

  • Inspiring leader and good listener
  • Well-versed in related concepts of risk management, portfolio management, finance, actuarial sciences, operations.
  • Very good interpersonal and communication skills, with ability to influence in an international context
  • Excellent organization and planning skills, ability to analyze and solve problems often involving cross functional teams having only a problem specific lifetime
  • Expertise in creating and deploying best practices and methodologies
  • High levels of commitment and energy combined with the ability to lead people, and the ability to influence outcomes

Your role

Your main responsibilities:

  • Define the cloud outsourcing security policies to be enforced on the new DC provider.
  • Define and drive local’s identity and access management strategy and associated policies and processes aligned with Group Information security to deliver against this.
  • Maintain a current understanding of the security threat landscape for the Insurance industry ensuring any changes are appropriately and effectively communicated to management.
  • Maintain an understanding of changing laws and regulations which may impact the local entity.
  • Develop a dashboard for senior management which effectively depicts the company’s security position.
  • Provide technical support and guidance to project teams and other business areas in relation to Information Security.  
  • Work with IT teams and business to assess existing control maturity, identify risks and implement appropriate mitigating controls.
  • Manage security compliance activities to ensure the company meets internal audit, legal and regulatory requirements. 
  • Ensure disaster recovery and business continuity plans are appropriate and sufficiently tested.
  • Aligned with group for defining Vulnerability management scope and Patching response
  • Be accountable for having critical assets attributes in CMDB accurate in order to define the security activities scope
  • Contributing on the InfoSec IT steerco as Subject Matter expert (Audit, Risk, Compliance, KRI, Pen testing,…)