Lead SOC Analyst
WSP Sverige AB / Datajobb / Stockholm
Observera att sista ansökningsdag har passerat.
Visa alla datajobb i Stockholm,
Solna,
Lidingö,
Sundbyberg,
Danderyd eller i
hela Sverige Visa alla jobb hos WSP Sverige AB i Stockholm,
Solna,
Södertälje,
Uppsala,
Eskilstuna eller i
hela Sverige WSP is a global consulting firm assisting public and private clients to plan, develop, design, construct, operate and maintain thousands of critical infrastructure projects around the world.
Position Summary
Under the guidance of the Global Director, Security Operations, assist with the overall design, analysis and execution of the Security Operations Center Tasks, including but not exclusive to:
Specific areas of responsibility may fall into any one of the following areas of Security Operations, as assigned by the staff's management.
Security Analysis
Identity Governance and User Lifecycle Management
Threat and Vulnerability Management
Network, Database, Server and Endpoint, and Application Security
Information Security Framework compliance
Audit Compliance
Security Awareness
Collection and analysis of metrics
SIEM
Antivirus and Antimalware analysis.
The Global SOC Analyst will have multiple security related roles within the organization. Their main goal will be to provide a secure computing environment for the organization to conduct their business. The global security operations team will have overlapping duties however each role will have more specifically focused duties. As such, the role and essential duties will fit into the below classifications most closely.
Responsibilities
Along with the below responsibilities all Global Information Security Analysts will be responsible for helping to identify gaps in our protection strategy, areas of risk, researching solutions, developing options and making recommendations for closing gaps or managing and mitigating the identified risks. They will also be responsible for providing technical expertise during incidents and investigations.
The analyst will be responsible for creating technical security standards for technologies within the below scopes of responsibilities and for auditing for compliance under these standards.
Threat and Vulnerability Management - recommend, design and manage the vulnerability management process. Not mutually exclusive to patching, Intrusion prevention, Vulnerability bulletins, penetration testing, malware prevention and incident response. Develops a common set of security tools. Defines operational parameters for their use and conducts reviews of tool output.
Security event detection and response - Manage the tools and processes for the organizations SIEM as well as any other event detection and response tools. Write Standard Operating procedures, train and handover to operations for remediation.
Security toolbox management - with assistance from all Global SOC analysts; evaluate, assess and implement new security tools to keep the security team up to date on the latest threat management, remediation, prevention and reporting tools.
Incident Management Process and Forensics - assist in providing forensic capabilities for the incident management process when needed. Monitor and manage infrastructure logging for security, including perimeter network devices, malware prevention, and intrusion prevention.
Definition and implementation of controls - Defines security configuration and operations standards for security systems and applications, including policy assessment and compliance tools, network security appliances, and host-based security systems. Develops and validates baseline security configurations for operating systems, applications, and networking and telecommunications equipment.
Endpoint Protection Strategy - Formulate the companies' Endpoint protection strategy, including but not exclusive to malware, host intrusion, encryption, browser protection and hardware level security controls.
Network infrastructure security - responsible for determining and maintaining the technical standards for configurations of routers, switches, firewalls, IPS and IDS devices.
Organization/department: Global Security Operations
Reports to: Global Director, Security Operations
Direct reports: Individual contributor.
Leadership and People Responsibilities
Assist in the training, and coaching of new and existing staff, and provide coaching to staff executing all aspects of information security and risk assessment and support
Develop positive working relationships with other team members and business partners and partner across teams to align with WSPs internal and external client demands
Assist in communication streamlining for information security risk and analysis across IT and vendors by acting as an advocate of security analysis and the overall information risk team
Finance/Budgetary Responsibilities
Support the Global Director, Security Operations in developing the budget projections based on short-and long-term goals and objectives
Requirements:
Required
5-+ years related experience in information security, risk, compliance, or similar position
Bachelor's degree or equivalent in Information Technology, Computer Science, Engineering or related field
Knowledge of security technologies (encryption, data protection, network intrusion prevention, host intrusion prevention, firewalls, privilege access, etc.)
Knowledge of enterprise IT security concerns and technologies, including but not limited to VPNs, network security, encryption, authentication, application-level network protocols, PKI, IPSec, Firewall, SSH, SSL, DES, LAN/WAN, and TCP/IP
Knowledge of security best practices with relation to applications, network and client setups
Experience with IT Governance frameworks such as COBIT, ITIL and ISO 2700x, NIST
Experience with governance, compliance and audit within IT environments
Experience of risk management, including risk analysis, mitigation and monitoring
Knowledge of information security regulations applicable to WSP
Preferred
Master's degree in Information Technology, Computer Science, Engineering or related field
Certification in Information Security (CISSP, ISC, or CISM) practices and policies
Contact
If you have any questions, please contact responsible recruitment consultant Josefine Stolt,
josefine.stolt@wsp.com Only applications in English will be considered. Your application will be handled with confidentiality.
Welcome with your application!
Publiceringsdatum2021-03-12Så ansöker duSista dag att ansöka är 2021-03-22
Klicka på denna länk för att göra din ansökanAdressWsp Sverige AB
Arenav. 7
12188 Stockholm
Omfattning Detta är ett heltidsjobb.
Arbetsgivare Wsp Sverige AB (org.nr 556057-4880)
Arenav. 7 (
visa karta)
121 88 STOCKHOLM
Arbetsplats WSP Personal
Jobbnummer 5626939
Observera att sista ansökningsdag har passerat.