{"id":270456,"date":"2022-05-13T14:12:53","date_gmt":"2022-05-13T12:12:53","guid":{"rendered":"http:\/\/welovesalt.com\/be\/jobs\/%wpbb_job_industry%\/information-security-analyst\/"},"modified":"2022-06-27T13:25:50","modified_gmt":"2022-06-27T11:25:50","slug":"information-security-analyst-270456","status":"archive","type":"wpbb_job","link":"https:\/\/welovesalt.com\/\/be\/jobs\/technology\/information-security-analyst-270456\/","title":{"rendered":"Information Security Analyst"},"content":{"rendered":"<p><strong>Information Security Analyst &#8211; Banking Client &#8211; Brussels <\/strong><\/p>\n<p><strong>Rate: &#8364;600 &#8211; &#8364;700 per day<\/strong><\/p>\n<p><strong>Duration: 1 year freelance contract<\/strong><\/p>\n<p><strong>Hybrid Working Solution <\/strong><\/p>\n<p>My client is a global critical financial infrastructure company. Security is at the core of the company&#8217;s services, firmly embedded in their management systems and processes.<\/p>\n<p>The <strong>Data Protection Governance<\/strong> team is part of the <strong>Cyber Information Security Office<\/strong> Division and is in charge of defining the strategy, analysing requirements and guiding the Data Protection Engineering team in implementing, operating and managing Data Protection Software used to detect and protect data from corruption, compromise or loss.<\/p>\n<p><strong> <\/strong><\/p>\n<p><strong>Role: Information Security Analyst &#8211; Banking Client &#8211; Brussels <\/strong><\/p>\n<p>This is a Security Analyst role where you will define the strategy for managing the security of the company data and help engineers and security architects in the design, selection and operation of Data Protection, the products&#8217; lifecycle and configuration.<\/p>\n<p>This role includes defining requirements, scoping initiatives, working on the governance aspect of data protection but also reviewing design of new products, reviewing integration of new applications, and reviewing support\/maintenance procedures.<\/p>\n<p>In the <strong>Data Protection Services Governance <\/strong>team, you are expected to:<\/p>\n<ul>\n<li>Participate to the definition of the Data Protection Department Strategy<\/li>\n<li>Define requirements for the different initiatives of the Data Protection Department<\/li>\n<li>Define requirements for the product selection to implement the Data Protection Strategy<\/li>\n<li>Help Project Leaders lead the different initiatives of the department from a content point of view and ensure review and understanding<\/li>\n<li>Ensure reporting of the evolution of the Data Protection controls and their compliance to regulation<\/li>\n<li>Participate to Audits by answering compliance objectives and questions related to data protection<\/li>\n<li>Participate in the ongoing monitoring our encryption posture for data in transit, data at rest and data in use.<\/li>\n<li>Assist with the improvement of the encryption solutions by reviewing and updating the encryption policies and identifying rules\/requirements which require fine tuning<\/li>\n<li>Assist in the selection, architecture, design, implementation and maintenance of the data encryption tools<\/li>\n<li>Assist in the enforcement of the encryption policies with the respective data owners<\/li>\n<li>identifying vulnerabilities of attacks to cryptographic systems<\/li>\n<li>Comparing and contrasting various cryptographic attack techniques<\/li>\n<li>Analyzing data using mathematical\/statistical methods<\/li>\n<li>Assist in conducting security evaluations and contribute to the design of counter-measures to address cryptographic vulnerabilities<\/li>\n<li>Participate in defining remediation actions to meet internal and external regulatory requirements<\/li>\n<li>Partner with representatives of CISO, IT, Risk and other key business teams to advance data protection initiatives<\/li>\n<li>Develop a high-level of trust with stakeholders to ensure on-going commitment<\/li>\n<li>Foster a team environment, open to communication and collaboration<\/li>\n<\/ul>\n<p><strong> <\/strong><\/p>\n<p><strong>Qualifications, Skills and experience<\/strong>:<\/p>\n<p>A combination of several of the below should be covered:<\/p>\n<ul>\n<li>IT-security professional with solid experience in the <strong>infrastructure security domain<\/strong> or in the IT application security domain.<\/li>\n<li>Knowledge of market standard control frameworks such as <strong>CIS TOP20, NIST 800-53 Rev.5,<\/strong> etc.<\/li>\n<li>Familiarity with data protection controls such as <strong>encryption, hashing, data signing, data anonymisation, DLP, <\/strong>etc.<\/li>\n<li>Experience in IT Risk Assessment and understanding the difference between Inherent Risk, Residual Risk, Control effectiveness, etc.<\/li>\n<li>Knowledge and understanding of different encryption solutions, key management, etc.<\/li>\n<li>Experience in implementing data protection policies, data classification and encryption of data<\/li>\n<li>Experience with automation using scripting \/ programmable knowledge and working knowledge (Shell, PowerShell, Python, SQL, etc.)<\/li>\n<li>Experience with SQL, data modelling and technical documentation<\/li>\n<li>Cybersecurity training and certification such as CISSP, CISA, CISM or equivalent is a plus<\/li>\n<\/ul>\n<p><strong>Interpersonal Skills:<\/strong><\/p>\n<ul>\n<li>Able to solve complex problems<\/li>\n<li>Creative and sees the bigger picture when addressing issues<\/li>\n<li>Works proactively, thereby keeping possible problems from affecting the overall functioning of the team and make sure the team is successful to deliver the solution<\/li>\n<li>Proficient oral and written communications skills in English, sharing strategy and vision with both peers and management<\/li>\n<li>Driven and energetic, entrepreneurial attitude, hands-on mentality<\/li>\n<li>Take ownership and ensure organizational quality standards are met<\/li>\n<\/ul>\n<p>Please do share an up to date CV to eobiechefu@welovesalt.com<\/p>\n<p><img decoding=\"async\" src=\"https:\/\/counter.adcourier.com\/ZW9iaWVjaGZ1LjMzNjg5LjEyNDk0QHNhbHQuYXBsaXRyYWsuY29t.gif\"><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Information Security Analyst &#8211; Banking Client &#8211; Brussels Rate: &#8364;600 &#8211; &#8364;700 per day Duration: 1 year freelance contract Hybrid Working Solution My client is a global critical financial infrastructure company. Security is at the core of the company&#8217;s services, firmly embedded in their management systems and processes. The Data Protection Governance team is part&hellip;<\/p>\n","protected":false},"template":"","wpbb_job_industry":[59],"wpbb_job_location":[3],"wpbb_job_type":[2],"wpbb_job_skill":[6814,4730,818,6816],"wpbb_job_locationType":[],"acf":[],"_links":{"self":[{"href":"https:\/\/welovesalt.com\/\/be\/wp-json\/wp\/v2\/wpbb_job\/270456"}],"collection":[{"href":"https:\/\/welovesalt.com\/\/be\/wp-json\/wp\/v2\/wpbb_job"}],"about":[{"href":"https:\/\/welovesalt.com\/\/be\/wp-json\/wp\/v2\/types\/wpbb_job"}],"wp:attachment":[{"href":"https:\/\/welovesalt.com\/\/be\/wp-json\/wp\/v2\/media?parent=270456"}],"wp:term":[{"taxonomy":"wpbb_job_industry","embeddable":true,"href":"https:\/\/welovesalt.com\/\/be\/wp-json\/wp\/v2\/wpbb_job_industry?post=270456"},{"taxonomy":"wpbb_job_location","embeddable":true,"href":"https:\/\/welovesalt.com\/\/be\/wp-json\/wp\/v2\/wpbb_job_location?post=270456"},{"taxonomy":"wpbb_job_type","embeddable":true,"href":"https:\/\/welovesalt.com\/\/be\/wp-json\/wp\/v2\/wpbb_job_type?post=270456"},{"taxonomy":"wpbb_job_skill","embeddable":true,"href":"https:\/\/welovesalt.com\/\/be\/wp-json\/wp\/v2\/wpbb_job_skill?post=270456"},{"taxonomy":"wpbb_job_locationType","embeddable":true,"href":"https:\/\/welovesalt.com\/\/be\/wp-json\/wp\/v2\/wpbb_job_locationType?post=270456"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}