Senior Security Analyst (CISM, CISSP, ISO/IEC 27001/2)

Senior Security Analyst ( CISM, CISSP, ISO/IEC 27001/2, SOX, NIST,)– Banking Client – Brussels

Job Description

• Security is at the core of the company’s services, firmly embedded in their management systems and processes.
• The Data Protection Governance team is part of the Cyber Information Security Office Division and is in charge of Governing and managing Data Protection Software used to detect and protect data from corruption, compromise or loss.
• This role is from the Brussels office and whilst you are remote working, you will be required to be onsite for team meetings.

Role:

This is a security Analyst role where you will help managing security standards, enhance existing policies and help create new ones, work closely with Internal Audit, Risk and the Business to ensure that Data remain safe and secure.

In Data Protection Services Governance Team, you are expected to:

• Have broad understanding of hardware, software, and networking technologies to provide a powerful combination of analysis, implementation, and support to an organization.
• Knowledge in network information and systems security, network administration, network engineering, hardware evaluation, and project management.
• Experience in conducting forensic analysis, incident recovery, and incident response services that help identify network intrusions and cyber network attacks as they occur on the network.
• In-depth knowledge on the following is highly desirable: CISM, CISSP, ISO/IEC 27001/2, SOX, NIST, GLBA, ISAE3402, SWIFT CSCF

Qualifications and experience:

A combination of several of the below should be covered:

• Knowledge of the following products: M365, Exchange Online, SharePoint Online, OneDrive, Teams, Lotus Notes, Axway MailGate, Trend Micro InterScan Messaging Security, Cisco Secure Email (former ESA), Cisco Secure Malware Analytics (former Threat Grid)
• Experience with global deployments of data loss prevention products and/or cloud-based solutions
• Experience/knowledgeable with data loss prevention products and/or cloud-based solutions
• solid experience in the infrastructure security domain or in the IT application security
• Solid understanding and experience architecting and implementing email security solutions
• expertise with McAfee ePO, endpoint protection suite, secure email gateway (SaaS), Netskope CASB/DLP *
• Experience in SIEM solutions (Security Incident Event Management) for analytics
• Solid understanding and experience architecting and implementing email security
• solutions
• Formulates deployment strategies for security monitoring devices and helps in the execution thereof
• Provides technical support to the Information Security Manager on security incident response.
• Evaluates security tools; determine compatibility issues with existing network configuration/infrastructure, and present conclusions to management.
• Strong Windows system administration and security assessment skills including Active Directory
• Strong organizational, problem-solving, written and communication skills
• Experience in data loss prevention policies to protect data, data classification documents and encryption of data
• Experience with automation using scripting / programmable knowledge and working knowledge (Shell, PowerShell, Python, SQL, etc.)

Interpersonal Skills:

• Able to solve complex problems
• Creative and sees the bigger picture when addressing issues
• Works proactively, thereby keeping possible problems from affecting the overall functioning of the team and make sure the team is successful to deliver the solution
• Proficient oral and written communications skills in English, sharing strategy and vision with both peers and management.
• Drive and energy, entrepreneurial attitude, hands-on mentality

Please do send across to me the most up to date CV to eobiechefu@welovesalt.com