Security Manager
Visma
Iasi, Sibiu
6 zile în urmă

Security Manager

The financial world has never been more dynamic than it is today. Big tech, fintech and the American tech giants are challenging the traditional parties.

Outsourcing, innovation, new products and services are the answer and help is needed. Visma Idella uses its knowledge, experience and products to make the financial sector faster, more agile and more innovative.

Visma Idella offers total solutions for banks, pension funds and investment institutions. Our solutions can be used for the (online) distribution and administration of pension products in the 2nd & 3rd pillar, for free capital accumulation products and for the benefit and reduction phase.

We serve more than 4 million Dutch people from our software solutions, making us the largest supplier of its kind in the Netherlands.

What are you going to do?You work closely with others in the Business Operations team, including the internal auditor, security manager and legal counsel.

You are the Go To Person for all security related aspects, from cloud security to physical security measures in our office locations.

Working closely with Product Development (SaaS) and Managed Services (BPO) teams within Visma Idella, you ensure that security maturity levels remain at par, meet Visma standards and provide comfort to our demanding customer base.

You actively contribute to the dialogue between certifying parties, the external auditor and our operational teams, in the context of the applicable control frameworks, evidence gathering and risk analyses for our ISAE reporting, ISO certification, SOCII and DNB Security Self Assessments.

As a SaaS and BPO company that provides services to the financial sector, our licence-to-operate is a material component of our business.

Additionally, the security engineers in our development teams and yourself interact closely on application of our security related policies, incident management as well as GDPR related issues with our data protection officer (DPO).

You also assess the risk level of the control measures and you draw up a risk-oriented work program that guarantees effective and efficient risk management for security matters.

Our ambitions on the assurance roadmap are material and in the coming years, we will further mature our license-to-operate for our demanding customer base.

Together with the team, your work will be reflected in timely ISAE statements (5 Type II’s per annum, heading for a few more in the years to come), delivery of ISO certifications (ISO27001, ISO27018) and a variety of regulatory components, in order for us to meet our assurance obligations in an appropriate manner.

What do we ask of you?

Master's or Bachelor's degree in related fields, preferably Engineering, Computer Science, Mathematics areas, with an overall minimum of 5 years of relevant experience in IT / BPO / tech sector

Understanding the IT Service industry as well as the relevant marketplace

Effectively drive service development and contribute to company development processes

  • Effectively cope with change; comfortably adjust to alterations in work activities; able to decide and act with limited information;
  • effectively handle risk and uncertainty in ambiguous situations

    Fluency in Business English is required

    Customer oriented behaviour

    Have demonstrated skill described as responsibilities herein :

    Knowledge of technical infrastructure, networks, databases and systems in relation to information security and risk management

    Most experienced in managing IT security controls in an organization

    Experience with computer network penetration testing and techniques

    Skills in implementing security solutions, in vulnerability testing, risk analysis and security assessments

    Experience in security engineering, computer and network security, authentication, security protocols and applied cryptography

    Experience in monitoring networks using a variety of tools to identify potential intrusions

    Ability to identify and mitigate vulnerabilities and explain how to avoid them

    In-depth technical knowledge within information security areas :

    Managing security operations in regards of detection, response and threat intelligence

    Intrusion offensives, detection and monitoring

    Security automation and orchestration processes

    Security Incident Response

    Vulnerability assessments, web and infrastructure pentesting

    Malware analysis and reverse engineering

    Advanced digital forensics activities

    Kill Chain detections

    Tactics,Techniques and Processes behavior patterns

    Demonstrated resilience, diplomacy, influence, relationship building, and problem solving skills in a variety of situation

    Desirable certifications

    SANS GIAC Auditor (GSNA) or equivalent

    ISC2 Certified Information System Security Professional (CISSP) or equivalent

    ISACA Certified Information System Manager (CISM) or equivalent

    ISO 27001 : 2013 Lead Implementer / Auditor (PECB) or equivalent

    ITILv3 certifications

    Network security certifications (CCNA / CCNP / MSCP or equivalent)

    You have a strong analytical mindset and good communication skills both verbal and in writing

    You have a proactive attitude with an antenna for organizational needs

    You can easily adapt to new demands and expectations in the position

    You are ethical : honest, sincere and discreet

    You are willing to consider alternative ideas and points of view

    You can work independently, but you are also a team player

    What do we offer you?Working at Visma Idella means a lot of space to let your talent flourish, realize your ambitions and keep pushing your boundaries.

    We like to work with short lines of communication. Of course also to the Visma organization, of which we are proud to be a part of.

    You can learn a lot from your >

    200 colleagues, who are just as professional and ambitious as you are.

    In addition, you regularly follow training courses and internal knowledge sessions here to remain the best in your field.

    And do you have a good idea yourself? Do you see something that you think could be better? If you are enthusiastic and can provide a good substantiation, your initiative will be appreciated and rewarded.

    Our clubhouse in Amersfoort allows for face to face interaction, but we are also very experienced in working online with remotely positioned colleagues.

    About 20% of our colleagues are already located in one of the Visma nearshore countries.

    Do you have the Visma Idella mentality?Are you enthusiastic about what you are good at and someone who challenges themselves and the organization to continuously improve?

    Do you not shy away from complex issues and are you ready to do the best work in your life? Do you also recognize yourself in the points mentioned?

    Then you have the Visma Idella mentality and we would like to meet you!

    Raportați această lucrare
    checkmark

    Thank you for reporting this job!

    Your feedback will help us improve the quality of our services.

    Aplică
    Email-ul meu
    Făcând clic pe "Continuă", acord nevoo consimțământ de a procesa datele mele și de a-mi trimite alerte prin e-mail, așa cum este detaliat în policyApplicația de confidențialitate a lui neuvoo. Pot să-mi retrag consimțământul sau să mă dezabonez în orice moment.
    Continuă
    Formular