Lead Cybersecurity Consultant (freelance)

Company Description

We are Netcompany-Intrasoft, a leading European IT Solutions and Services Group with strong international presence and expertise, offering innovative and added-value solutions of the highest quality to a wide range of international and national public and private organizations. More than 500 organizations in over 70 countries worldwide have chosen the company's services and solutions to fulfill their business needs.

For more information regarding our company, current projects, and openings around Europe, please consult our website: www.netcompany-intrasoft.com.

Job Description

A day in the life of a Lead Cybersecurity Consultant -

The Cybersecurity directorate (CISO) of a renowned EU institution among other tasks is dedicated to ICT security governance, security policies, enhancing user awareness, performing risk assessment, ensure the cyber security of all ICT systems, to quickly react in the event of incidents and develop policies for enhancing the security of ICT systems.
CISO is looking for a Cybersecurity Specialist to join its team in order to enhance its capacity to protect the renown EU institution's ICT infrastructure and applications, develop and update security policies, manage security governance, conduct user awareness and perform risk assessment on all the renown EU institution's ICT systems.

This profile must have leadership, service and project management abilities and requires flexibility to work on several confidential tasks in parallel. On its specific demand, it could also be required to work outside normal working hours or days.

Your main duties will include to:

Contribute to Security Management activities:

• Contribute to building the strategic view for the future of ICT security at the client.
• Draft ICT Security policies, standards, guidelines;
• Perform market reviews, products analyses, studies;
• Lead security-related solutions assessments and labs;
• Lead and manage Security-related projects;
• Contribute to the communication of the available policies.

Define and deliver user awareness programs:

• Elaborate presentations, messages targeted to the end-users;
• Elaborate demos and videos for illustration;
• Provide support to Communication and Training Departments for building various material (e.g. posters, flyers, e-learning);
• Lead lectures, conferences, demos and workshops.

Support project and application owners in designing, implementing and maintaining ICT Security:

• Perform Risk analysis according to state-of-the-art methodologies and practices (including standards such as EBIOS, ISO 27005);
• Elaborate ICT Security requirements for in-house and outsourced projects and applications;
• Define and review architectures for security systems;
• Design and implement Security settings on various kinds of IT components;
• Coordinate ICT Security activities in the projects, provide support to project managers;
• Supervise Security testing/assessment throughout the projects;
• Provide support for remediating Security vulnerabilities or issues;
• Assess security aspects of products and solutions.

Protect the Institution’s ICT infrastructure and applications:

• Design and implement secured architectures;
• Design and implement Security settings on various kinds of IT components;
• Develop scripts and programs for a more efficient automation.

Collaborate with ICT departments for defining security procedures and best practices.

• Study ICT security standards and regulations for applying them to the client's context.
• Perform and/or supervise system risk analysis.
• Propose appropriate security counter-measures according to standards and best practices.
• Define security-operating procedures for systems and products.
• Perform security studies and the design of security architectures.
• Select, test and customize software and hardware tools for security.
• Define risk management plans related to ICT security.

Support other ICT Security activities:

• Provide input for policies/standards/baselines writing;
• Provide technical support to Project owners for Security design;
• Perform market analyses, set up labs/PoC for assessing and participate in the evaluation and selection of appropriate technical solutions and/or tools;
• Contribute to technical presentations and demos for user awareness
• Manage and analyse security ICT events that occurs.
• Auditing and reviewing configuration of software, communication, computing systems;
• Respond to incidents and perform technical analysis tasks;
• Detect and analyse security events; plan, execute and monitor the operations;
• Design, implement and manage technical security architectures, systems and software;
• Develop associated processes and procedures and follow-up on their implementation;
• Define a taxonomy for ICT assets.
• Collect information on ICT assets and categorize them according to the taxonomy.
• Develop scripts and programs for a more efficient automation.
• Regularly attends conferences, professional association meetings, and technical symposia to remain aware of the latest information security technological developments.
• Acts as a technical consultant on information security incident investigations and forensic technical analyses.

Qualifications

If you have:

• A level of education corresponding to a Masters degree.
• At least six years' of professional relevant experience, including:
  • Three years’ experience related to ICT security management (e.g. ISMS implementation, policy management, development of security policies and standards); and
  •  Two years’ experience as a team leader or project leader for major security-related projects
• At least one ICT Security professional certification is also required.
• Excellent organizational skills, ability to work with a minimum supervision and be committed to excellence and quality service delivery.
• Ability to generate reports and written analysis on complex and multi-domain security topics, both at high and technical levels.
• Availability for managing unplanned events and work under pressure, occasionally outside the normal working hours in case of severe security incidents.
• Excellent communication skills, ability to lead multi-lingual meetings and to do presentations to managers, technical staff and also end-users in the context of user awareness activities.
• Team spirit and ability to coordinate other experts' work.
• Very good knowledge of both written and oral English.
• Good command of French is an asset.

…then this position is suitable for you! 

Additional Information

This position comes with:

• Competitive compensation packages
• Continuous learning (with the most modern methods - unlimited access to Udemy for Business), and fast career growth
• Interesting and challenging tasks within large-scale projects
• An international dynamic within a fast-paced working environment
• The opportunity to work in a diverse environment with talented colleagues

We ensure equal opportunities, treatment, and consideration to all candidates. Discrimination based on sex, racial or ethnic origin, religion or belief, disability, age, sexual orientation or marital status, physical or mental disability, or any other factor protected by applicable laws and regulations is prohibited. At Netcompany-Intrasoft we respect human rights as part of our culture, and we focus on creating a positive workplace in which all employees are valued and where diversity and inclusivity are welcomed.

The safety and well-being of our employees remain our top priority. Please note that Netcompany-Intrasoft’s recruitment process is being conducted virtually due to preventive measures against the Covid-19 pandemic.

Our culture

Our people are the most important element of our success. Our work life is well defined by our set of fundamental Values: https://bit.ly/3SSbBzU 

 #BePartOfSomethingGreat!

*Please submit your CV in English

All applications will be treated as strictly confidential.