Why is remote work so nice? Let's try to see!
Apply
Security Analyst Architecture & Engineering
Posted 8 days agoViewed
🏢 Company: Sourcefit👥 51-100💰 about 1 year agoStaffing AgencyConsultingHuman ResourcesInformation Technology
🗣️ Languages: English
Requirements:
- Experience in a combination of network and or infrastructure design, information security, and Digital IT jobs.
- Knowledge of information security management frameworks, such as ISO/IEC 27001, and NIST are beneficial but not essential.
- An understanding of the evolving threat landscape and the ability to translate an emerging threat’s likelihood of exploiting inherent weaknesses, and business impact and therefore articulating calculating overall risk and developing risk mitigations - is beneficial.
- Methodical approach to architecture design inclusive of threat assessment and treatment.
- Broad technical Digital IT and Industrial experience including Cloud computing, websites, ERP, big data, ICS, and SCADA systems.
Responsibilities:
- Contribute to defining and delivering a Cyber & Information Security Strategy that supports the company's Business and Digital Transformation plans.
- Help define a target state security architecture and identify change initiatives.
- Conduct continuous assessments of current Digital & IT and Industrial systems and processes.
- Support all UK&I project initiatives ensuring the company’s existing security frameworks are completed and integrated into the Product Delivery Lifecycle.
- Maintain awareness and knowledge of vendor space, current and emerging technologies, and services of interest and relevance to the maturity and continuous improvements of the UK&I and Group catalog of security services.
- Engage with various stakeholder groups and committees across Digital & IT, Industrial, and Group to provide subject matter expertise and advice on all matters of cyber and information security architecture, and secure commitment to support strategic and tactical security initiatives.
- Provide consultancy for technology implementation – ensuring that legislative (privacy, data protection) and security (policies, minimum security requirements, PSATs, etc.) factors are considered to safeguard the company’s information assets.
- Act as a contact for security architecture & engineering project-related escalations.
- Support the Cyber & Information Security GRC Lead to undertake technical threat and risk assessments/reviews of IT and the Industrial business environments.
- Develop actions and plans with Digital & IT and Business leaders to address identified security exposures, through effective planning and execution with the help of supporting functions.
- Keep up-to-date with the latest threat information, risks, and technologies, and implement adequate detective, preventive, and corrective security controls seeking internal (Group) and external advice where necessary.
- Work closely with the Development department to ensure the ‘Low Code’ ‘No Code’ strategy and associated platforms incorporate effective security by design methodologies assuring that known security weaknesses i.e. OWASP top 10 are addressed and tested in advance of system migration to production.
- Ensure that you fully comply with Saint-Gobain’s Data Governance Policies as they relate to your area and demonstrate in your day-to-day work that you treat data as an important corporate asset that must be protected and managed.
- Maintain Saint-Gobain’s compliance standards and in collaboration with the CISO and CISO department, ensure timely completion and submission of all local and group-driven reporting requirements.
- Ensure that all architecture designs established to ensure the safe and secure Acquisitions and Divestments are completed in line with Group directives, whilst minimizing the introduction of any new security risks to the company.
Related Articles
Posted 7 months ago
Insights into the evolving landscape of remote work in 2024 reveal the importance of certifications and continuous learning. This article breaks down emerging trends, sought-after certifications, and provides practical solutions for enhancing your employability and expertise. What skills will be essential for remote job seekers, and how can you navigate this dynamic market to secure your dream role?
Posted 8 months ago
Explore the challenges and strategies of maintaining work-life balance while working remotely. Learn about unique aspects of remote work, associated challenges, historical context, and effective strategies to separate work and personal life.
Posted 8 months ago
Google is gearing up to expand its remote job listings, promising more opportunities across various departments and regions. Find out how this move can benefit job seekers and impact the market.
Posted 8 months ago
Learn about the importance of pre-onboarding preparation for remote employees, including checklist creation, documentation, tools and equipment setup, communication plans, and feedback strategies. Discover how proactive pre-onboarding can enhance job performance, increase retention rates, and foster a sense of belonging from day one.