Detalhes da oferta
Empregador
Fundamental objective of our client's Global Cyber Security is to help harness business opportunities in a safe and secure way. They recognize that cyber security is not just a technical issue and requires engagement with the whole business to adapt a holistic approach to cyber security. The Cyber Security Operations (SecOps) team is integral in linking cyber security custom and practice to the global business, monitoring, detecting and responding to alarms and incidents, identifying, prioritizing and driving remediation for vulnerabilities and testing responsive protocols. This is integral to ensuring security capabilities can enable value generation, prevent value destruction (aligned to the cyber risk posture), support secure technology transformation and security is designed for the demands of clients, products and consulting, regions, divisions, employees.The role is essential for supporting configuration (rulesets and technical policy) within DLP and Insider threat tooling and for working with broader teams who operate technology tools to ensure they are optimised for use by the insider threat team. Monitoring and responding to DLP alarms, triaging and driving responsive action is also a key responsibility.Descrição
Experience working in cyber security through large scale business transformation.Operate global host and network data loss prevention technologies.
Perform daily triage against DLP alerts.
Take a lead position when positive data loss incidents are identified at a Global level drives incident rigor with the SOC, ensuring the resolution of events working in support of the Insider Threat Director.
Maintain and establish mechanisms to ensure ongoing improvements to Global DLP processes and procedures.
Recommend DLP configuration changes, including testing and validation. Working in partnership with key infrastructure stakeholders and third parties.
Recommend improvements or additions to DLP requirements and use cases.
Conduct analysis of and provides metrics regarding DLP trends, anomalies, etc.
Conduct security research on threats and remediation methods.
Interpret corporate policies and translate into technical rulesets and technical policy to monitor priority use cases that alarm when policy is not followed or when exceptions to baselines of usual behaviour are identified.
Responsible for following up insider incidents, ensuring forensic chain is undertaken where appropriate and full reports are available.
Deputise for the Global Insider Threat Director and to work on highly sensitive, legal and HR investigations with the highest level of quality and integrity.
Responsible for working collaborative across multiple teams to coach and influence on insider threat and to help drive a strong security culture across the organization.
Responsible for taking on a 'security coaching role' when engaging with business and functional partners.
Responsible for ensuring DLP tooling is optimized, is supported by operational rigor and coverage gaps are quickly identified at a Global level.
Engagement/support to Cyber Threat Intelligence to be provided on an ad-hoc basis, as agreed with the Director of Insider Threat and CTI Manager.
Perfil desejado
Demonstrable experience working within an IT management role or a Cyber Security role - primarily setting up capabilities from a greenfield environment and operationalising those.Exceptional experience operating within SME areas of a cyber team and ideally experience working within an IT Helpdesk (incident triaging) environment.
Good understanding of configuration change management and project management processes.
Strong attention to detail, follow-up and excellent organizational skills.
Ability to collaborate with cross-functional teams.
Ability to treat sensitive/confidential information appropriately.
Must possess personal tact, discretion and good judgment.
Excellent interpersonal, written and verbal communication skills.
Certification or demonstrable technical skills in a range of different DLP tooling.
Knowledge of Web and Mail gateway solutions.
High level of Operating System and general IT knowledge.
Working knowledge of security fundamentals, including firewalls, routers and ACLs.
Awareness of various regulatory compliances such as privacy/GDPR, PCI, and others.
Experience is preferred above certifications.
Oferecemos
A great international opportunity.Resumo
Setor
Information Technology
Information Technology
Subsetor
Segurança
Segurança
Indústria
Business Services
Business Services
Localização
Porto
Porto
Tipo de contrato
Indefinido
Indefinido
Nome do Consultor
Sofia Santos
Sofia Santos
Referência da Oferta
JN-042022-5428023
JN-042022-5428023
| Distrito | Porto |
|---|---|
| Local | Porto |
| Sector de actividade | Administração e Serviços de Escritório |
| Tipo de contrato | Full-time |
| Tipo de oferta | Emprego |
| Contactos |
MichaelPage
Avenida da Liberdade, nº180-A, 3º andar 1250-146 Lisboa |