Thales people architect identity management and data protection solutions at the heart of digital security. Business and governments rely on us to bring trust to the billions of digital interactions they have with people. Our technologies and services help banks exchange funds, people cross borders, energy become smarter and much more. More than 30,000 organizations already rely on us to verify the identities of people and things, grant access to digital services, analyze vast quantities of information and encrypt data to make the connected world more secure.
Essential Functions / Key Areas of Responsibility Local Information Security Officer:
Evaluate risks and develop security standards, procedures, and controls to manage risks.
Ensure the compliance of the projects with the established corporate security governance and with regulatory requirements (such as Information Systems Security Policy and legal requirements) of Information Systems and in accordance with ethical, legal and contractual requirements.
Manage site certification and security activities, in conjunction with the Regional DIS SSM and the approval authority, the employment authority and the Documentation Plan, and in accordance with the Information Systems Security governance note.
Plan and monitor the progress of the implementation of Information Systems approvals.
Provide continuous input to the CISO (Chief Information Security Officer) and help measure the cybersecurity risk posture of Thales.
Characterize problems, collect data and establish valid and relevant facts and conclusions.
Perform and investigate internal and external information security risk and exceptions assessments.
Assess incidents, vulnerability management, scans, patching status, secure baselines, penetration test results, phishing, and social engineering tests and attacks.
Contribute to staff awareness, learning, and development in cybersecurity.
Continuously evaluate cybersecurity controls to ensure effectiveness, compliance, and adherence to key controls and policies and drive remediation efforts.
Support and troubleshoot overall IT installations and upgrades.
Respond to general IT requests.
Ensure security software is kept up to date.
Ensure IT security, availability, speed, and reliability.
Minimum Requirements:
Master of Engineering, Information Technology, Computer Science or any related field.
Experience in either Azure, AWS, GCP or VMware VMC providing Infrastructure as a Service.
General OS systems, Enterprise, programming & scripting languages (i.e., C, Python, Java, Bash, PowerShell), and Office software.
Database and networking security systems.
Local Area Network (LAN), wireless networks, and wide Area Network (WAN) technologies (e.g., DWDM, SONET, ATM, MSPP).
Storage and cloud computing technologies.
Test and configuration tools.
Solid networking understanding including routing, switching, and overlay.
Experience in software firewall configuration of both guest and platform.
Knowledge of relevant information security standards, e.g., ISO 27001 and ISO 27005.
Ability to apply advanced principles, theories, and concepts.
Ability to work with customers and technical teams.
Ability to explain to users the rules that must be respected in order not to endanger the company's information system.
Ability to demonstrate diplomacy, listening skills, a sense of dialogue and persuasion, to convince users of the risks involved and the validity of the procedures put in place.
Ability to have already worked on cybersecurity risk analyses.
Good legal knowledge of security and IT law.
At Thales we provide CAREERS and not only jobs. With Thales employing 80,000 employees in 68 countries, our mobility policy enables thousands of employees each year to develop their careers at home and abroad, in their existing areas of expertise or by branching out into new fields. Together we believe that embracing flexibility is a smarter way of working. Great journeys start here, apply now!
#J-18808-Ljbffr