Desired Qualifications

advertisement
Job Title:
Security Engineer
Reporting to:
Department:
Location:
Regional Information Security Officer
Global Information Security
Crawley
About the role
To assist in the development, implementation and maintenance of the global information security program, focusing on
data protection. Working closely with the global information security team and business leaders as well as the IT support
and development teams to identify security risks and implement solutions to mitigate risks within business appetite.
As a member of the global information security team you may be tasked with providing ownership for the day-to-day
information security engineering and operational activities for the organization. You will support and maintain current
technologies while contributing to the development of information security solutions, which will include all applicable
standards, tools, controls, processes and procedures.
The position requires hands-on technical work, a comprehensive understanding of today’s information security
challenges, domains, concepts and principles, as well as strong project management disciplines and communication
skills.
Scope
This position reports to the Regional Information Security Officer for the ACE Group. Responsibilities require
collaboration with the ability to influence and affect change in support of key objectives at local, regional and global
levels. The ability to manage multiple priorities is essential. Periodically directs the activities of external resources. This
position will require travel.
Major Duties & Responsibilities
 Design, implement and maintain comprehensive information security solutions to meet business requirements.
 Collaborate with other information security personnel, located around the globe, to define and implement global
standards, solutions and best practices.
 Participate in cross-functional project teams along with individuals from IT Infrastructure, Enterprise Architecture
and Application Development to design and implement security solutions as prioritized by management.
 Collaborate with key stakeholders to validate and verify audit findings, control deficiencies and remediation plans.
 Remain current on relevant security regulations, laws and technologies in an effort to manage solutions as required.
 Conduct assessments of existing security operational processes and recommend changes to associated policies,
standards, controls and procedures.
 Conduct assessments of new and/or existing 3rd party providers.
 Create and manage implementation plans with well-defined and measurable milestones; track and report progress
to senior management.
 Assist the team in the management of security events and technical forensic investigation efforts on a global level.
 Develop and contribute to information security metrics and reporting to depict strengths and opportunities.
Job Description 121012SF
ACE European Group Limited
ACE Building – 100 Leadenhall Street – London EC3A 3BP
Qualifications & Experience
Technically skilled individual with:
 5+ years, hands-on, broad-based information security experience
 3-5 years technical experience:
o across multiple platforms (i.e. Mainframe, Windows, UNIX)
o of network security (i.e. firewalls, proxies, IDS/IPS)
 1-3 years’ experience with:
o working in a regulated environment (e.g. data privacy, Sarbanes Oxley)
o PCI-DSS
o securing e-commerce based transactions
o application security solutions
o security architecture
o encryption tools
o identity management and logical access controls and principles
o threat and vulnerability management tools and processes
o incident management procedures and forensics
o performing technical risk assessments
o information security controls and procedures
 Experience of operational security monitoring, metrics and reporting
 Individual attributes:
o Strong results orientation and organizational skills
o Customer service driven
o Superior verbal and written communication
o Strong presentation skills
o Team player with the ability to achieve, impact and influence
o A self-starter with strong interpersonal skills and the ability to work independently
o Demonstrates sense of urgency and a high-degree of initiative
o Proven track record of problem solving and successfully implementing cost effective solutions
o Demonstrates the ability to make risk based decisions
o Ability to provide periodic off-hour support for critical security matters
Desired Qualifications
 BS in Computer Science or other related disciplines
 Certified Information Systems Security Professional (CISSP) and/or equivalent
 PMP or other project management certifications
How to apply for this role
Email your CV and state the role you are applying for to [email protected]
When applying could you please provide your current remuneration details, including your basic salary in your
application
Job Description 121012SF
ACE European Group Limited
ACE Building – 100 Leadenhall Street – London EC3A 3BP
Download