About this role
<div class="image-box"><img style="width:700.0px" src="https://performancemanager5.successfactors.eu/SES/logos/4doors.jpg"></div> <div id="p"> <p style="text-align:center"><br><span style="font-size:20.0px"><span style="font-family:arial, helvetica, sans-serif"><strong>Senior Analyst, Information Security Management</strong></span></span></p> </div><p><b>ROLE DESCRIPTION:</b><br> We are looking for a Senior Analyst, Information Security Management to join the ISM team in our Bucharest location!</p> <p> </p> <p class="Bullet1"><span style="font-size:9.5pt"><span><span style="font-family:Arial, sans-serif"><span style="font-size:10.0pt">In this role, you will contribute to the development and continuous improvement of the SES information security management and policy framework and manages information security projects as laid down in the SES information security roadmap.</span></span></span></span></p> <p class="Bullet1"><span style="font-size:9.5pt"><span><span style="font-family:Arial, sans-serif"><span style="font-size:10.0pt">You will also manage information security risks, as well as design and implement information security concepts to adequately safeguard information assets of SES, its affiliates and commercial platforms. </span></span></span></span><span style="font-size:9.5pt"><span><span style="font-family:Arial, sans-serif"><span style="font-size:10.0pt">You will get to also provide Information and Cyber Security related project support and internal consultancy within the organization as well as for customer related projects.</span></span></span></span></p> <p> </p> <p>You will be responsible for <em>(this is not an exhaustive list)</em>:</p> <ul> <li><span style="font-family:Arial, sans-serif">Coordinate the development and continuous improvement of the SES information security management system in accordance with industry standards and best practices</span></li> <li><span style="font-family:Arial, sans-serif">Identify, assess and manage information security risks</span></li> <li><span style="font-family:Arial, sans-serif">Manage compliance to the information security policy framework </span></li> <li><span style="font-family:Arial, sans-serif">Liaise with relevant stakeholders across the organisation to develop and promote information security policies, standards, processes and procedures </span></li> <li><span style="font-family:Arial, sans-serif">Support the definition and implementation of SES’s information security strategy and framework </span> <ul style="list-style-type:circle"> <li><span style="font-family:Arial, sans-serif">by assessing information security risks and </span></li> <li><span style="font-family:Arial, sans-serif">specifying and implementing information security controls to mitigate key risks.</span></li> </ul> </li> <li><span style="font-family:Arial, sans-serif">Manage assigned information security projects and budgets as laid down in SES’s information security strategy and deliver them within time, cost and scope.</span></li> <li><span style="font-family:Arial, sans-serif">Design, implement and document information security concepts and information security controls, including coordination of various business stakeholders and engineering groups.</span></li> <li><span style="font-family:Arial, sans-serif">Perform information security audits and vulnerability assessments and support the management of vulnerabilities</span></li> <li><span style="font-family:Arial, sans-serif">Support the detection and analysis of information security incidents and manage adequate responses to information security incidents </span></li> <li><span style="font-family:Arial, sans-serif">Support the development and maintenance of SES’s information security awareness program and delivery of awareness sessions</span></li> <li><span style="font-family:Arial, sans-serif">Provide clear, concise, timely and constructive recommendations regarding information security in all areas related to information systems, networks and applications</span></li> <li><span style="font-family:Arial, sans-serif">Travel as required</span></li> </ul> <p> </p> <p><b>YOUR PROFILE</b></p> <ol> <li><b><u>Must have </u></b></li> </ol> <ul> <li class="Bullet1"><span style="font-family:Arial, sans-serif">Degree in Computer Science and minimum of 6 years of industry related experience</span></li> <li class="Bullet1"><span style="font-family:Arial, sans-serif">NATO nationality is a must, EU Nationality is a plus. Must be willing to undergo Personal Security Clearance process, if required.</span></li> <li class="Bullet1"><span style="font-family:Arial, sans-serif">Strong knowledge of Information Security Standards and good practices, including ISO 27000 series, NIST SP-800 series (e.g., NIST800-53), etc.</span></li> <li class="Bullet1"><span style="font-family:Arial, sans-serif">Strong, hands-on knowledge of and experience with implementing and maintaining Information Security Management Systems in accordance with ISO 27001 and best practices</span></li> <li class="Bullet1"><span style="font-family:Arial, sans-serif">Strong, hands-on knowledge of and experience with securing cloud environments</span></li> <li class="Bullet1"><span style="font-family:Arial, sans-serif">Information Security Risk Management frameworks and methodologies</span></li> <li class="Bullet1"><span style="font-family:Arial, sans-serif">Network security, system security, application security and security design</span></li> <li class="Bullet1"><span style="font-family:Arial, sans-serif">Cyber Security threats, vulnerabilities, security technologies and controls</span></li> <li class="Bullet1"><span style="font-family:Arial, sans-serif">Data Protection and Data Privacy</span></li> <li class="Bullet1"><span style="font-family:Arial, sans-serif">Vulnerability, compliance and patch management for complex networks, systems and applications</span></li> </ul> <p> </p> <p><b><u>2. Nice to Have</u></b></p> <ul> <li><span style="font-family:Arial, sans-serif">Relevant certifications (e.g., ISO 27001 Lead Implementer, ISO 27005 Certified Risk Manager, CISM, CISA, CISSP) and knowledge of the satellite industry are a plus</span></li> <li class="Bullet1"><span style="font-family:Arial, sans-serif">Consulting experience would be a plus</span></li> </ul> <p> </p> <p> </p> <p><b>WHAT'S IN IT FOR YOU</b></p> <ul> <li>Flexible working policy</li> <li>Bonus plans</li> <li>Comprehensive and competitive benefits plan</li> <li>A range of wellness activities and employee assistance programs </li> </ul> <style type="text/css">div.content { background: #FFFFFF; } div.joqReqDescription { background: #FFF repeat-y!important; font-family:Arial, Helvetica, sans-serif!important; text-align:left; color:#000; width:700px!important; margin:0 auto!important; position:relative; -webkit-column-count: 1; /* Chrome, Safari, Opera */ -moz-column-count: 1; /* Firefox */ column-count: 1; padding-top:0px; padding-left: inherit; padding-bottom:50px; font-size:14px } div.joqReqDescription div.image-box { width: 700px; text-align: center; display: block; padding: 0 0 35px; } div.joqReqDescription p, div.joqReqDescription ul{ font-family:Arial, Helvetica, sans-serif!important; margin:0 15px; padding-bottom:12px; } div.joqReqDescription li{ padding-bottom:6px; } /* position: absolute; height: 389px; } div.joqReqDescription div.imagebox2 { text-align:center; } */ </style> <div id="p"> <p>SES and its Affiliated Companies are committed to providing fair and equal employment opportunities to all. We are an Equal Opportunity employer and will consider all qualified applicants for employment without regard to race, color, religion, gender, pregnancy, sex, sexual orientation, gender identity, national origin, age, genetic information, protected veteran status, disability, or any other basis protected by local, state, or federal law.</p> <p>For more information on SES, click <a href="https://www.ses.com">here</a>.</p> </div>