Tirane, Information Security Specialist
[FONT="]Ref Job number: # 002 ISO #
Job Title: Information Security Specialist[/FONT]
[FONT="]Location: Tirana
Division: Information Security Sector [/FONT]
[FONT="]Closing Date: 07/11/2014[/FONT]
[FONT="]
[/FONT]
[FONT="]Credit Agricole Albania Bank S.A.,[/FONT][FONT="] Crédit Agricole Group, a market leader in universal customer-focused banking in France and one of the largest banks in Europe seeks to serve the real economy by supporting its clients’ projects in all areas of retail banking and associated specialized business lines.
Emphasizing its values and its commitment, we are the bank of common sense. It puts the satisfaction and the interests of its 54 million customers, 160,000 employees, 1.2 million shareholders and 6.5 million mutual shareholders, at the heart of its activities.
[/FONT]
[FONT="]
[/FONT]
[FONT="]We are seeking to recruit[/FONT][FONT="]: Information Security Sector Specialist[/FONT]
[FONT="]Direct Reports to[/FONT][FONT="]: Head of Information Security Sector[/FONT]
[FONT="]Job Purpose:[/FONT][FONT="]The Information Security Sector Specialist is responsible for the control process, monitoring process, change management process, risk assessment for different projects, security configuration reviews (IPS, firewall, domain, vmware, backup), Access right process, Risk Assessment methodology, Security Trainings for the employees, BCP support, Gap analysis, Patch management, vulnerability mitigation process, penetration tests, incident follow up process, information classification project, different daily tasks[/FONT]
[FONT="]Main Responsibilities:[/FONT]
[FONT="]Network security[/FONT]
· [FONT="]Perimeter protection – define the measures and baselines[/FONT]
· [FONT="]Fire Wall protection (internal and external), rules analysis, approval, and continuous monitoring[/FONT]
· [FONT="]Intrusion Prevention protection (internal and external), rules analysis, approval, and continuous monitoring[/FONT]
· [FONT="]Device protection following secure configuration principles[/FONT]
· [FONT="]Analyse the new technologies in network security (encryption, layer 2 protection, IPS IDS etc) [/FONT]
· [FONT="]Create and execute the control plan to insure the required level of security[/FONT]
· [FONT="]Continuous Monitoring of the entity network[/FONT]
[FONT="]Systems Security[/FONT]
· [FONT="]Define and concept the baseline security on all systems[/FONT]
· [FONT="]Check the Log Management Systems, for log retention, reviews, and analysis[/FONT]
· [FONT="]Review and analysis the needs for security protection on different systems (domain security etc)[/FONT]
· [FONT="]Ensure proper vulnerability management process [/FONT]
· [FONT="]Ensure proper Penetration tests process[/FONT]
· [FONT="]Ensure proper Patch management process [/FONT]
· [FONT="]Review the backup plan on systems and DR measures[/FONT]
· [FONT="]Ensure proper Endpoint (Workstation) protection[/FONT]
· [FONT="]Propose and Control implementation of proper security measures for workstations in the Bank[/FONT]
· [FONT="]Perform regulatory controls based on the Year control plan[/FONT]
· [FONT="]Develop and maintains procedures based on the Information Security Policies[/FONT]
· [FONT="]Ensures and monitors compliance with Information Security Policy, procedures and guidelines.[/FONT]
· [FONT="]Undertakes a continuous Risk Assessment process over bank network and other systems[/FONT]
· [FONT="]Review and analyses the data leak prevention/protection mechanisms [/FONT]
· [FONT="]Ensure if proper controls are in place for protection of mobile devices (laptop encryption etc)[/FONT]
· [FONT="]Ensure that the incident management process is handled properly over the network and system level. [/FONT]
· [FONT="]Investigate for security breaches.[/FONT]
· [FONT="]Insure proper implementation of local and group standards in the entity network and systems [/FONT]
· [FONT="]Keep watch over potential new threats and risks[/FONT]
· [FONT="]Preparing reports by use monitoring tools [/FONT]
· [FONT="]Contribute on the Business Continuity and Disaster Recovery Plan [/FONT]
· [FONT="]Contribute on Keeping the Plan Up-to-date[/FONT]
· [FONT="]Contribute on BCP yearly test process[/FONT]
[FONT="]The ideal Candidate should have: [/FONT]
· [FONT="]Good analytical and problem-solving skills[/FONT]
· [FONT="]Good investigation skills[/FONT]
· [FONT="]Good written and oral communication skills [/FONT]
· [FONT="]Ability to multi-task in a fast-paced environment[/FONT]
· [FONT="]Ability to work independently.[/FONT]
· [FONT="]Must be able to prioritize and meet deadlines.[/FONT]
[FONT="]
Criteria to be fulfilled:[/FONT]
· [FONT="]University degree in Computer Science, Electronic Engineering, or related fields.[/FONT]
· [FONT="]5 years of Experience as a network and domain administrator.[/FONT]
· [FONT="]Experience in networking Management (LAN/WAN), firewalls, IPS, virus detection, VMware.[/FONT]
· [FONT="]Good knowledge on Network Monitoring systems.[/FONT]
· [FONT="]Knowledge of Penetration and Vulnerability detection systems.[/FONT]
· [FONT="]English (written/oral).[/FONT]
[FONT="]
[/FONT]
How to apply:
Strong motivated candidates looking for a dynamic job and professional team are welcomed to apply by following these steps:
1- Properly fill our standard application form available to be downloaded. We kindly advise to carefully fill all required info and obligatory fields. For downloading the application form, please click here.
2- Submit the completed application form by sending it only through this e-mail address jobapplication@credit-agricole.al
3- In the e-mail subject please specify clearly the position reference number.
Please note that only shortlisted candidates will be further contacted from our HR specialists.
[FONT="].[/FONT]
[FONT="]Publication date: 24/10/2014[/FONT]
Job Title: Information Security Specialist[/FONT]
[FONT="]Location: Tirana
Division: Information Security Sector [/FONT]
[FONT="]Closing Date: 07/11/2014[/FONT]
[FONT="]
[/FONT]
[FONT="]Credit Agricole Albania Bank S.A.,[/FONT][FONT="] Crédit Agricole Group, a market leader in universal customer-focused banking in France and one of the largest banks in Europe seeks to serve the real economy by supporting its clients’ projects in all areas of retail banking and associated specialized business lines.
Emphasizing its values and its commitment, we are the bank of common sense. It puts the satisfaction and the interests of its 54 million customers, 160,000 employees, 1.2 million shareholders and 6.5 million mutual shareholders, at the heart of its activities.
[/FONT]
[FONT="]
[/FONT]
[FONT="]We are seeking to recruit[/FONT][FONT="]: Information Security Sector Specialist[/FONT]
[FONT="]Direct Reports to[/FONT][FONT="]: Head of Information Security Sector[/FONT]
[FONT="]Job Purpose:[/FONT][FONT="]The Information Security Sector Specialist is responsible for the control process, monitoring process, change management process, risk assessment for different projects, security configuration reviews (IPS, firewall, domain, vmware, backup), Access right process, Risk Assessment methodology, Security Trainings for the employees, BCP support, Gap analysis, Patch management, vulnerability mitigation process, penetration tests, incident follow up process, information classification project, different daily tasks[/FONT]
[FONT="]Main Responsibilities:[/FONT]
[FONT="]Network security[/FONT]
· [FONT="]Perimeter protection – define the measures and baselines[/FONT]
· [FONT="]Fire Wall protection (internal and external), rules analysis, approval, and continuous monitoring[/FONT]
· [FONT="]Intrusion Prevention protection (internal and external), rules analysis, approval, and continuous monitoring[/FONT]
· [FONT="]Device protection following secure configuration principles[/FONT]
· [FONT="]Analyse the new technologies in network security (encryption, layer 2 protection, IPS IDS etc) [/FONT]
· [FONT="]Create and execute the control plan to insure the required level of security[/FONT]
· [FONT="]Continuous Monitoring of the entity network[/FONT]
[FONT="]Systems Security[/FONT]
· [FONT="]Define and concept the baseline security on all systems[/FONT]
· [FONT="]Check the Log Management Systems, for log retention, reviews, and analysis[/FONT]
· [FONT="]Review and analysis the needs for security protection on different systems (domain security etc)[/FONT]
· [FONT="]Ensure proper vulnerability management process [/FONT]
· [FONT="]Ensure proper Penetration tests process[/FONT]
· [FONT="]Ensure proper Patch management process [/FONT]
· [FONT="]Review the backup plan on systems and DR measures[/FONT]
· [FONT="]Ensure proper Endpoint (Workstation) protection[/FONT]
· [FONT="]Propose and Control implementation of proper security measures for workstations in the Bank[/FONT]
· [FONT="]Perform regulatory controls based on the Year control plan[/FONT]
· [FONT="]Develop and maintains procedures based on the Information Security Policies[/FONT]
· [FONT="]Ensures and monitors compliance with Information Security Policy, procedures and guidelines.[/FONT]
· [FONT="]Undertakes a continuous Risk Assessment process over bank network and other systems[/FONT]
· [FONT="]Review and analyses the data leak prevention/protection mechanisms [/FONT]
· [FONT="]Ensure if proper controls are in place for protection of mobile devices (laptop encryption etc)[/FONT]
· [FONT="]Ensure that the incident management process is handled properly over the network and system level. [/FONT]
· [FONT="]Investigate for security breaches.[/FONT]
· [FONT="]Insure proper implementation of local and group standards in the entity network and systems [/FONT]
· [FONT="]Keep watch over potential new threats and risks[/FONT]
· [FONT="]Preparing reports by use monitoring tools [/FONT]
· [FONT="]Contribute on the Business Continuity and Disaster Recovery Plan [/FONT]
· [FONT="]Contribute on Keeping the Plan Up-to-date[/FONT]
· [FONT="]Contribute on BCP yearly test process[/FONT]
[FONT="]The ideal Candidate should have: [/FONT]
· [FONT="]Good analytical and problem-solving skills[/FONT]
· [FONT="]Good investigation skills[/FONT]
· [FONT="]Good written and oral communication skills [/FONT]
· [FONT="]Ability to multi-task in a fast-paced environment[/FONT]
· [FONT="]Ability to work independently.[/FONT]
· [FONT="]Must be able to prioritize and meet deadlines.[/FONT]
[FONT="]
Criteria to be fulfilled:[/FONT]
· [FONT="]University degree in Computer Science, Electronic Engineering, or related fields.[/FONT]
· [FONT="]5 years of Experience as a network and domain administrator.[/FONT]
· [FONT="]Experience in networking Management (LAN/WAN), firewalls, IPS, virus detection, VMware.[/FONT]
· [FONT="]Good knowledge on Network Monitoring systems.[/FONT]
· [FONT="]Knowledge of Penetration and Vulnerability detection systems.[/FONT]
· [FONT="]English (written/oral).[/FONT]
[FONT="]
[/FONT]
How to apply:
Strong motivated candidates looking for a dynamic job and professional team are welcomed to apply by following these steps:
1- Properly fill our standard application form available to be downloaded. We kindly advise to carefully fill all required info and obligatory fields. For downloading the application form, please click here.
2- Submit the completed application form by sending it only through this e-mail address jobapplication@credit-agricole.al
3- In the e-mail subject please specify clearly the position reference number.
Please note that only shortlisted candidates will be further contacted from our HR specialists.
[FONT="].[/FONT]
[FONT="]Publication date: 24/10/2014[/FONT]