IT Security Senior Analyst/Sub Team Leader

 

Division: CISO

$ads={1}

Cyber & Information Security experts

Euroclear is a global critical financial infrastructure company. Security is at the core of the company’s services, firmly embedded in their management systems and processes. Our Department provides impact analysis, security risk assessment, security requirements, design validation for all IT projects in Euroclear, regular security assessments of Euroclear applications and the underlying infrastructure. We also support Euroclear’s compliance activities by reviewing and publishing secure configuration baselines and by organising the Security Exception Review Board. Finally we provide consultancy for anyone in Euroclear for any IT security related question.

Required Technical and Professional Expertise

We are looking for Cyber & Information Security experts to strengthen our team in our Brussels office with experience in one or more of the following areas:

• Proven experience in security risk assessments, development of functional security requirements, process design and management reporting.
• Familiarity with industry best practices in key security domains like: identity and access management, PKI, network security, data protection.
• Application security knowledge with a good understanding of software development and testing, OWASP (Open Web Application Security Project) guidelines, code scanning tools, security and compliance automation using a CI/CD pipeline.
• Knowledge of and experience with security technologies including IDAAS (Identity as a service) and identity management platforms, Secure access management and federation services, PKI and cryptographic solutions, web application firewalls, endpoint security
• Knowledge of and experience with security technologies covering domains Virtualisation, Software Defined Networks, Cloud IAAS/PAAS/SAAS, Network and DMZ infrastructure, VOIP, Wifi, 802.1x, Anti-malware, System protection, Middleware, Collaboration and end-user workspace solutions, Storage (SAN, NAS), Databases, infrastructure automation services (Infrastructure as a code)
• Preferred professional certifications are CISSP, GIAC, SABSA, ISO 27001 LA/LI. Specific Security related Product certifications are considered an asset.

Your Responsibilities

• Define and advise on the design, implementation and test processes necessary to protect information system assets.
• Perform risk assessments and translate the security architecture and high-level policies and controls towards security requirements (secure by design) for business and IT projects.
• Contribute to the architectural design and validate it against the security requirements
• Define security testing requirements and penetration test scope, actively support the testing teams to perform these tests and approve the test reports.
• Define, implement and ensure the proper functioning of security services of our department in line with IT security policies.
• Recommend and advise on new or improved security services towards the division management.
• Produce documented security services, technical standards or principles.
• Act as a security subject matter expert within a certain domain (for example Mainframe security, PKI and Cryptography, Network security, platform security, IAM, application security or secure coding), being the point of contact for both business and project teams. Your stakeholders are mainly the business owners/analysts, project leader, risk management, internal/external auditors and off course the engineers, developers and architects.
• You will work at Euroclear headquarters in the center of Brussels.

Your Profile

• University degree in Computer Science, Engineering or similar degree.
• IT-security professional with solid experience in the infrastructure security domain or in the IT application security domain.
• Depending of the experience level; a senior profiles has at least +10 years’ cyber security experience covering multiple domains, the candidate has worked for multiple companies/cross industries. As an entry level profile , the candidate we’re looking for has minimum +3 years’ experience in cyber security in one domain.
• Good working knowledge of documentation and presentation applications including PowerPoint, Visio, Excel, and Word
• Experience translating business requirements into technical solutions
• Effective organizational, planning and time management skills
• Effective research, analytical, and problem solving skills
• Effective skill exercising initiative and using good judgment to make sound decisions
• Effective skill maintaining accuracy with attention to detail and meeting deadlines
• Effective skill presenting findings, conclusions, alternatives and information clearly and concisely
• Able to operate within an international/multi-cultural, networked environment.
• Fluent in English
• Team player who communicates in an open, respectful and constructive way with customers and peers, both verbally and in writing.
• Strong communication skills, being able to discuss, defend and translate security topics with both senior business people as with deep technical IT experts.
• Ability to handle different projects and cope with pressure and stressful situations.
• Take ownership and ensure that organizational quality standards are met.
• Independent, service-oriented and organized.
  

About Euroclear

As a global critical financial infrastructure, the protection of Euroclear information and assets is fundamental to the company’s business. Euroclear’s security division includes about 300 IT security professionals – in charge of putting in place the required controls to adequately and effectively protect the various information assets.

The main responsibility of the division is to ensure on group level that the technology infrastructure at Euroclear protects corporate assets from unauthorised access, modification, disclosure and destruction. Within that division, our team is responsible for assessing the risks related to change initiatives, generating security requirements using the company policies, control framework and standard and actively support the design and validation activities in both waterfall and agile initiatives to ensure that the implemented solutions are still compliant with the necessary controls and our risk exposure is not going above the risk appetite of the business. Additionally we are also providing a security consultancy service that can be engaged by anyone within the company to advise on any cyber and information security related question.

You are joining an innovative global market leader, having sound ambitions, strong investments and being at the heart of financial markets. Euroclear is a fascinating multicultural organisation (almost 90 different nationalities) enabling you to establish local and international contacts across teams and on different company levels. A great deal of knowledge sharing takes place between the teams and there is room for entrepreneurship. It is a company that invests in its people, following education or additional trainings is being encouraged. With Euroclear you have the opportunity to grow your career, either within the security division as a security expert or towards risk auditing or with more focus on the business side. You are part of a mature and well-established group security division, having a direct and important impact on security of the critical financial infrastructure and the company’s core business. If you are assertive and want to achieve certain things the necessary means and support will be made available.

$ads={2}

 

.