• Tirane, ofroj vend pune

Role purpose:

• Cyber Security Incidents support for technology and coordination and follow up of incident management and investigation activities with local CSIRT team and group until incident resolution.
• Design, implement and monitor technical security controls to guarantee information security in networks and systems and compliance with best practices and standards.
• Technology security baseline programme compliance delivery locally in collaboration with group teams.
• Understand different technologies (applications, Operation Systems, DB environment) and Network (Core, Access, IP) and identify controls and give recommendations to reduce security vulnerabilities and increase security assurance.
• Collaborate closely with Corporate Security, Internal Audit, Privacy officer and Compliance to ensure effective management & mitigation of security risks.

Key accountabilities and decision ownership:

• Participate in CSIRT team and coordinate CSIRT activities and actions across functions of the organisation.
• Follow up GSOC security cases and GSIM security incidents /threats and coordinate /act in order to complete the recommended actions
• Vulnerability & Patch Management activities in collaboration with central Vulnerability Management team and technical owners.
• Technology Security Risk management activities ensuring that all risks are effectively managed or mitigated
• Support new product and services with requirements, security assessment, penetration test, vulnerability scans, security configuration reviews in order to ensure compliance with best practices, Vodafone security standards, ISO 27001, PCI -DSS, privacy framework and SOX controls.
• Support local delivery of group and regional technology security initiatives such as self –assessments, risk assessments, audits and penetration tests
• To promote awareness of security standards, risks/ threats and incident/ risk prevention or mitigation
• Monitor security vulnerabilities posted by vendors and independent organisations (CERT, NIST etc.)

Core competencies, knowledge and experience:

• Strong analytical skills with attention to details
• Broad experience of working in a Telecommunications or Data network or related service industry
• Knowledge of the project methodology and delivery processes that operate inside Vodafone
• Broad experience of delivering successful projects through virtual teams and suppliers
• Experience of working in a service operational environment.
• Specific technical know-how and competences on Network and IT systems.
• Technical security incident / log management skills.
• Privacy – PCI DSS – ISO 27001/SOX knowledge.
• Excellent communication and reporting skills.
• Interpersonal skills, enthusiastic, reliable, team player and committed to Vodafone security strategic goals delivery actively.
• Must be result oriented professional.
• Confidant (trusted to access confidential and/or personal records

Must have technical / professional qualifications:

• Hold a relevant degree on Computer Science, Engineering or IT
• Excellent knowledge of Albanian and English (speaking and writing )
• Relevant experience in Telecom or banking sector in similar role.
• Network and IT security skills to enable the role holder to ensure effective management & mitigation of security risks
• Experience in implementation of ISO 27001, PCI-DSS, SOX compliance programs
• Certifications in the area of information security would be beneficial.

Te intersuarit duhet te kryejne aplikimin duke derguar CV-ne brenda dates 21/08/2018 ne email: Humanresources.al@vodafone.com
 


Apply
Back
Top