We are looking for a Cyber Security Specialist for Cybersecurity Governance - GRC activities for an important client in the public transport sector. You will be in charge of governance and compliance with the relevant NIST and ISO standards. Key requirements:
At least 3/5 years' experience in the Cybersecurity field; Bachelor's or Master's degree in Computer Science, Computer Engineering or STEM address. For the first phase of the project, it is necessary to:
Have gained experience in GRC (Governance Risk Compliance); Having carried out IT audits independently; Thorough knowledge of the ISO 27001 standard; Knowledge of GDPR; Knowledge of Business Continuity (ISO 22301) and Disaster Recovery; Ability to independently develop and write documentation regarding compliance with the ISO 27001 standard; Ability to support the design of security solutions for applications, infrastructure and industrial control systems; Ability to perform practical VA and PT activities (preferred but not mandatory). Second phase of the project:
Technical and technological assessment and management of IT security incidents and typical SOC technical and managerial escalation procedures; Ability to interpret and assess security incidents from the analysis of logs of systems, networks and perimeter security systems; Ability to restore systems in the event of a disaster (systems and networks); Technical and technological evaluation and management of security hardening techniques for networks, complex systems and perimeter security equipment (firewalls); Knowledge of the main security systems paradigms (Active Directory, Radius, Firewalling, NAT/PAT, Proxy and reverse proxy, antivirus, SIEM, Log manager, authentication systems, EDR, XDR). In particular, knowledge of firewall check point systems, Fortinet of SIEM Log 360 Manage Engine is appreciated; Strong technical system skills proven by having technically managed and maintained ICT and/or OT infrastructures; Location: Rome (hybrid)
#J-18808-Ljbffr