ICT Security Specialist

Nyon , Switzerland
Full Time
Competitive
6 / 10


Full description

Job information:

Division / Unit: Services / Information & Communication Technology
Contract type: Fixed Term
Start date: 01.10.2022
End date: 30.09.2024
Location: Nyon

Main goal:

The Information Security Specialist is a member of the ICT Information Security Governance (SecGov) team, reporting to the Information Security Manager and working closely with other Information Security Specialists and the Information Security Operations (SecOps) team.
The ICT Security Specialists have a strong information security governance background and the necessary soft and hard skills to propose, enforce and optimise ICT SecGov as well as the security controls. They are experts in information security governance principles and have broad-ranging understanding of technical security concepts.
They work with various ICT groups, such as the business service managers (BSMs), infrastructure, architecture, DevOps, and operations teams, providing them with ICT security governance support and expertise.

Key responsibilities:

The role comprises the following duties:
- Supporting defined ICT SecGov and contributing to its improvement;
- Carrying out internal security risk assessments by analysing business security risks and computing environments to determine threat, vulnerabilities and recommend safeguards to mitigate risk;
- Leading/performing third-party risk management activities on acquisition of new services, regular risk assessments, etc.;
- Leading and following up on remediations identified during security assessments: vulnerability scans, penetration tests, internal audits, etc.;
- Participating in the drafting, implementation and optimisation of the information security policy and standards;
- Being proactive in the continuous improvement of information security: governance, processes and technologies;
- Contributing to ICT projects by ensuring that security standards and requirements included in the deliverables;
- Supporting ICT Information Security team to ensure cloud best practices and UEFA cloud security guidelines are adhered to, with a strong focus on O365, AWS and Azure;
- Finalising UEFA's information security incident response plan and helping to implement it;
- Drafting and helping to implement UEFA's secure software development life cycle (SSDLC);
- Helping the ICT Information Security team to create SIEM business use cases and ensuring the necessary information is collected, with a strong focus on Microsoft technology;

- Providing technical studies and expertise and evaluating new ICT security products and technologies to protect against existing and emerging security threats;
- Preparing reports and technical documentation for managers and users;
- Assisting the ICT Information Security team with project management, change management and communication activities.

Profile:

Experience required:
- Minimum of 4 years of professional experience in information security

Education:
- Bachelor's in information security or equivalent work experience
- Technical Diploma SANS Security Essentials (GSEC) or Cloud Security Essentials (GCLD), CSA Certificate of Cloud Security Knowledge (CCSK), ISO 27001 LI/LA, CISM, or CISSP certification would be an asset
- Other security certification (e.g., AWS Certified Security, Azure/M365 Security Engineer) would be an asset

Languages:
- English / Advanced
- French / Advanced
- German / Intermediate

Additional requirements:
- Excellent knowledge of industry security standards and best practices, e.g. OWASP, ISO 27001/2
- Excellent knowledge of information security governance, risk assessments, etc.
- Deep interest and a strong interest in writing policies and standards
- Good knowledge of technologies, products and architectures used in the information systems security sector
- Good knowledge of the Incident and Response Framework (NIST SP 800-61 Rev. 2), in terms of policy, planning and procedures
- Good knowledge of internet and web application security
- Good understanding of how various systems interconnect with each other
- Experience working with hardware and software systems, including OS, databases, applications, and networks.
- Experience in messaging, corporate directories, systems and network security
- Confirmed ability to work independently and good project management skills
- Strong ability to communicate with top management, local IT staff/management, partners, vendors and consultants
- Multidisciplinary, pragmatic approach
- Abstract thinker and problem solver

DIDN'T FIND YOUR IDEAL JOB?

If you didn’t find your ideal job create a job alert and get notified as soon as jobs matching your ambitions go live.

DIDN'T FIND YOUR IDEAL COURSE

If you didn’t find your ideal course create a job alert and get notified as soon as courses matching your ambitions go live.

DIDN'T FIND YOUR TRAINING PROGRAMME?

If you didn’t find your ideal training programme create a programme alert and get notified as soon as programmes matching your ambitions go live.

USERS WHO VIEWED THIS ALSO VIEWED

Emotional Intelligence Training – Develop yourself and Learn How to Develop Others.

Get certified to deliver the world’s most advanced system for measuring and developing emotional...
Online

Master’s Degree in Sports Management

This MBA enables students and sports managers to obtain the broadest possible perspective on all...
Madrid/Online

BADMINTON COACH (DOUBLES) 羽毛球教練 (雙打)

The Hong Kong Sports Institute Limited (“HKSI”) is the Government’s designated organisation...
Hong Kong

Communications and Media Relations Coordinator

UCI is looking for a Communications and Media Relations Coordinator.
Aigle, Switzerland

Women's National Head Coach U23 - 3yr FTC

Lead the England Women's U23 team overseeing a multidisciplinary team that delivers a world leading...
Burton-On-Trent, GB

England Women's Assistant Coach U23 - Casual Contract

Responsible for supporting the development of players within the Women's U23 squad, by providing technical...
Burton-On-Trent, GB

Cycling Esports Coordinator

The UCI Sports Department is looking for a Cycling Esports Coordinator
Aigle, Suisse

Women's Teams Physiotherapist (Casual Contract)

This exciting role will support the delivery of an excellent physiotherapy programme to England Women's...
Burton-On-Trent, GB

Talent Partner (FTC or day rate options)

We are looking for someone to join our dedicated hiring team of Talent Partners for one of our key accounts -...
Remote & London

Senior Manager Analytics & Strategy

The Strategic Planning and Analytics team sits within the Sub-Division of Business Affairs & Strategy of the...
Zurich