the information security officer has a key mission: to promote and reinforce the information security in the notary sector. the security officers are part of a small team and enjoy a varied job: • we advise project teams on security matters (“security by design”), • we perform penetration and vulnerability testing, • we make users and managers aware on the cyber threats, • we monitor user and system activities, • we respond to cyber incidents of various origins, • we keep an eye on the evolution of cyber security landscape. you want • to perform penetration testing at the application/service level on demand or pro-actively, • to perform infrastructure vulnerability testing, • you know how to conduct network port scanning, • you have experience with vulnerability scanning tools, • report your test results to different audiences, • explain the security risks to the management, • help developers to find fixes, • react to reported security incidents, • you have an experience in security incident management, • you can document an incident, assess its severity and urgency, • you can quickly answer to questions from the users (via phone or mail), • you are at ease in explaining to users the urgent measures to take or the likely cause of an incident, • advise project or product teams to design applications with security in mind, • contribute to a dynamic and constructive security culture in the organization. you have: • bachelor or master degree or equivalent by experience, • at least 5 years experience in an “it environment”, • at least 2 years of experience in it security and preferably experience with application security testing, • a proven track record of handling security incidents, • thorough understanding of information technologies, data security and network concepts, • good understanding of the risk- cost or user convenience balance, • good understanding in information security frameworks (cis, nist, iso27000) are considered a plus, • information security certifications such as: ceh, cissp, oscp are considered a plus, • you know the top-10 owasp risks: how to test an application against these risks, • you have experience in reporting pentest results to project teams, • you are familiar with pentest tool like burp suite you are: • fr or nl is your mother language (full working proficiency in both languages is preferable as customers are fr
grâce à prounity, vous centralisez tous les processus de recrutement et de gestion de vos collaborateurs externes sur une seule plateforme.
ADS