Security Management Specialist/ISO27001-Auditor - 3x 1-year (on-site) - EU-client
On site
Valenciennes, France
Freelance
22-10-2024
Job Specifications
We are looking for one Security Management Specialist/ISO27001-Auditor (100% on-site) with EU-passport to start a 3x 1-year contract (extensions possible) for an EU-agency-client. Start date:in 2-3 months or earlier when you have an existing EU-Security-clearance.
BACKGROUND
Our client is aninternational organisation and a great reference in any CV! English speaking environment.
This role will be 100% onsite
This is a real long-term contract withpossibility of extension based on performance and budget availability (initial 220day contract, where 2x 220 day extensions are foreseen).
EU nationals ONLY (due to the "EU" security certifications required). We can't accept any longer UK-consultants, as long they don't have EU-security-clearance or another EU-citizenship (Please note, after Brexit the UK-consultants can't get any longer "EU" security clearances, which is mandatory for this position).
Start date in 2-3 months. Earlier when you have an existing EU-security-clearance. We will support your request to get a SC clearance but this application might delay start by someweeks.
This position requires "security clearance level: EU SECRET".If the candidate doesn't have a Security Clearance (SC) yet, then he/she can start working, when presenting:
- A freshcriminal record (from his/her home country), plus ID-card copy. Our company is holding "FSC - Facility Security Clearance", so we are able to guide/sponsor you through the "PSC - Personal Security Clearance" procedure.
The applicants attention is drawn to the important role that the curriculum vitae plays in the evaluation. Curriculum vitae shall illustrate the specific skills relevant to this request.
We would like to receive CVs of suitable candidates together with pricing quotations, based on a daily net rate including travel costs for the services described.
Europass-CV-format (DOC) will be required at a later stage, it's mandatory, we can provide template (please don't use the online forms).
JOB DESCRIPTION
The Job Description is "general", as usual in these EU-agencies, where we will learn about the specific focus of the role in the VC interview.
TASKS
Support the Agency's Information Security Officers in the management of information security and business continuity across organizational business processes and information systems;
Develop security controls in the context of the agency's information security framework.
Perform risk assessments;
Develop Information Security Management System (ISMS) procedures;
Develop conceptual, logical and physical security models as appropriate;
Draft security policies, standards, procedures and guidelines in accordance with ISO27001;
Develop security plans and documentation (eg, risk treatment plans, security test plans);
Develop business continuity and disaster recovery plans;
Perform security assessments and audits;
Perform ISMS control audits;
Perform ISMS gap assessments;
Design security controls in accordance with agency information security policies and standards;
Provide assistance in formal accreditation process for information systems handling EU sensitive and classified information.
SKILLS
Minimum 4 years of relevant education (master or equivalent) after the secondary school.
Minimum 6 years of IT professional experience, of which
Minimum 4 years of relevant professional experience in Information Security Management.
ISO27001 implementation, management and audit;Relevant standards and good practice in information security management;
Risk management;
Governance, Risk & Compliance (GRC) practices and controls;
ISO27001 security control audits and assessments;
Developing security policies, standards and guidelines in accordance with ISO27001 and EU security policies and standards;
Design, implementation and assessments of good practice security control frameworks such as SANS Top 20 Critical Controls, OWASP Application
Security Verification Standard;
Secure development processes (Security and Privacy design);
Implementation of EU data protection principles in information system design and processes.Certificates, strongly desired:
Certified Information Systems Security Professional (CISSP);
Certified Information Security Manager (CISM);
Certified Information Systems Auditor (CISA);
ITIL/ITIL V3;
BSI ISO27001 Lead Auditor Qualification.
PROVIDER
infom consulting is an owner-managed business and consulting firm in Germany. The company supports large corporations and larger SMEs across Europe. Our IT experts are realising projects for the European Institutions, United Nations agencies, International Organisations and multinational companies across the EU.
If this sounds of interest, then please get in touch ASAP so we can talk about the role and your experience.
About the Company
IT Consulting. IT Services. IT Recruitment. infom consulting GmbH is an owner-managed business and IT consulting firm. The company supports large corporations and larger SMEs across Europe. Across all IT business areas we have the experience to successfully implement projects and services that make companies more competitive in times of digital transformation. We provide IT-Professionals in IT and IT-related Engineering sectors and offer extensive IT consulting services (e.g. MSP, Vendor management, Procurement support). ... Know more
Related Jobs
- Company Name
- Ubique Systems
- Job Title
- Network Engineer
- Job Description
- Greetings from Ubique Systems!!! We are looking for a Network Engineer for one of our customer who has an expertise in:- Cisco Catalyst Wifi (Wireless LAN Controllers & Access Points). Prefer 9000 series experience, like 9800, 9166 Cisco Catalyst LAN Prefer 9000 series experience, like 9300, 9200, etc Cisco CCNA Certification Protocols EIGRP, BGP, QoS, FNF, PfR Meraki SD-WAN Checkpoint Site-to-Site VPN Azure Networking a plus Checkpoint Firewalls Zscaler ZIA, ZPA Meraki Firewalls Employment type:-Contract. It would be hybrid working on Paris.. If you are interested in this particular role you can reach out to me on rupak.maitra@ubique-systems.com Note:-Only apply if you have valid visa in the EU Region, Sponsorship will not be given.
- Company Name
- Inside
- Job Title
- Expert en cybersécurité/Experte en cybersécurité
- Job Description
- Inside est apporteur de solutions, de services et de valeurs auprès des entreprises et DSI pour une transformation digitale agile. Au cœur de nos expertises : Ops et infra Accompagnement et pilotage de projets IT Transformation DevOps Digital & Développement Inside, c'est aussi une organisation collaborative qui bénéficie d'un environnement décloisonné grâce à nos Squads, nos Guildes et nos 2 Centres de Compétences Digital et Infra qui sont les catalyseurs de nos différentes compétences. un mélange de culture et une liberté de penser favorisant à la fois notre excellence opérationnelle et l'épanouissement de nos 400 Insiders sur nos 8 agences. Notre groupe est certifié Great Place to Work et est classé 16ème Best Workplace France ! Au cœur de nos engagements : la qualité de vie au travail, la montée en compétences et des actions sociales et citoyennes. Pourquoi rejoindre Inside ? Co-construisons votre aventure professionnelle ! Car il y a le poste pour lequel vous nous rejoigniez et la carrière que vous ferez : choix de vos missions, parcours de formation et de certification personnalisés, projets d'entreprise au-delà de son job... Partageons nos savoir-faire ! Pour grandir ensemble, il y a différentes communautés techniques et apprenantes pour grandir de ses pairs ou partager ses savoir-faire. Equilibrons nos vies privées et pro ! Accord et programme de Qualité de vie au travail, droit à la déconnexion, télétravail,...des actions essentielles pour se sentir bien. Préservons la planète ! Charte employeur pro-vélo, mobilité douce et multimodale, communauté interne éco-responsable, green IT...des actions qui nous tiennent à cœur ! Nous sommes à la recherche d'un administrateur Cybersécurité F/H pour intervenir au sein de l'équipe SOC de notre client présent dans le secteur bancaire à Nantes. Vos missions : Surveillance et sécurité : Vous serez chargé de gérer les événements de sécurité et de répondre rapidement aux incidents. Gestion des outils de détection : Configuration, déploiement et maintien des sondes de sécurité (Trellix, EDR Tehtris, XDR) pour surveiller l'infrastructure (serveurs, postes de travail, datacenters). Analyse d’incidents : En utilisant des solutions avancées comme Splunk, WAF F5, vous détecterez les menaces, analyserez les signaux faibles et proposerez des actions correctives. Veille sécurité : Vous contribuerez à l’amélioration continue des dispositifs de sécurité, en anticipant les nouvelles menaces. Votre profil : Vous avez une expérience confirmée en cybersécurité et vous maitrisez toute la chaîne de sécurité IT ? Vous êtes doté d'une bonne maîtrise des systèmes IBM, Windows, Linux ainsi que des environnements réseaux (LAN/WAN) et également des outils de détection et de réponse (EDR, XDR, Splunk, Tehtris, etc.). Enfin, vous avez une bonne capacité d’analyse et de gestion des crises ? Alors n'attendez plus et rejoignez nous ! Le poste est accessible aux personnes en situation de handicap et est à pourvoir dans le cadre d'un CDI.
- Company Name
- Empiric
- Job Title
- System Engineer - Storage/Virtualisation/Networking/Operating Systems - Highly Classified Project
- Job Description
- System Engineer - Ansible/Python/Storage/Virtualisation/Networking - Highly Classified Project We have a new, exciting position for an accomplished System Engineer to work on a highly classified initiative that plays a crucial role in enhancing the security and operational efficiency across Europe. This is a unique opportunity to be part of something significant, where your expertise will have a direct impact on security and safety across Europe. In this position, you will be responsible for providing L3 support to our client's operational teams based on-site in Strasbourg. Your role will involve maintaining the smooth operation of critical IT systems that support the project, as well as engaging in specific, high-priority projects aligned with your technical strengths. Your work will require close collaboration with infrastructure architects, project managers, and other key team members to ensure that any issues are resolved quickly and efficiently. In this role, you'll manage incidents within the infrastructure, perform root cause analysis, and implement solutions alongside internal teams and the client. You'll also maintain and improve systems, keep documentation up to date, and contribute to automation to streamline operations. Your input in knowledge-sharing sessions will help enhance team expertise. You'll work with cutting-edge tools like VMware, HPE Storage, and Cisco Networking, while leveraging automation through Ansible and scripting languages like Python and Linux Shell. A minimum of five years' experience in system engineering, DevOps, or SRE roles is essential, with expertise in at least 3 from storage, virtualisation, networking, or operating systems. This is a full-time, freelance position offering an incredible opportunity to make an impact on one of Europe's most important security initiatives. You must be an EU Citizen to be considered for this role. This is an urgent role with interview slots confirmed with the client, so please apply immediately if this sounds like the next role for you!
- Company Name
- Next Ventures
- Job Title
- Network Security Architect
- Job Description
- Job Title: Cisco F5 Network Datacentre Architect Guyancourt - hybrid working - FREELANCE About Us: We're a forward-thinking, innovative team dedicated to safeguarding data integrity and ensuring our networks are secure. Join us, and you'll be at the heart of creating solutions that protect sensitive information and enhance our operational efficiency. Role Overview: As a Cisco F5 Network Datacentre Architect, you'll design, implement, and manage robust security architectures that shield our data and networks from threats. Your expertise will guide our strategies and ensure our infrastructure remains impenetrable against cyber-attacks. Key Responsibilities: * Develop and implement security policies, protocols, and procedures. * Design secure network solutions that meet both business and regulatory requirements. * Perform risk assessments and provide recommendations for mitigating identified risks. * Manage and monitor security solutions, including firewalls, VPNs, IDS/IPS. * Collaborate with IT and other departments to ensure seamless security integration. * Conduct regular vulnerability assessments and penetration tests. * Stay updated on the latest security trends, threats, and technology solutions. Requirements: * Bachelor's degree in Computer Science, Information Technology, or a related field. * Proven experience in network security architecture and datacentre environments. * Strong knowledge of Cisco and F5 BIG-IP technologies. * Proficiency in risk assessment and mitigation strategies. * Relevant certifications (e.g., CISSP, CCSP, CISA, CEH) are a plus. * Excellent problem-solving skills and attention to detail. Please reach out harry@next-ventures.com or Maddison.Rogers@next-ventures.com +31202417315