Cyber Architecture Engineer - Bardi, Italia - Knewin

    Knewin
    Knewin Bardi, Italia

    2 settimane fa

    Default job background
    Descrizione
    Job Posting Title
    Cyber Architecture Engineer The challenge
    An exciting opportunity has arisen to contribute to Haier Europe.

    The Company is on a journey to achieve ambitious business growth and leadership objectives in the region, and we need someone who is passionate, proactive, self-driven and motivated to join a team of open-minded individuals.

    We are looking for an individual who demonstrates the core values of the Haier's attitude: entrepreneurship and innovation, zero distance to consumers and IoT & Ecosystem thinking.

    A true change agent with an agile approach thriving for idea contamination and with a hyper-collaborative approach that breaks silos and creates an open ecosystem.

    What you will do The Candidate will be responsible for planning, designing, testing, implementing and maintaining an organization's services, network security infrastructure, Design/DevSecOps and data security.

    More granularly, he will be responsible for preventing data breaches and monitoring and reacting to attacks. He will report directly to the IT Security Director and will be involved in the security strategy vision in order to increase the Company security posture
    ACTIVITIES AND AREAS OF RESPONSIBILITY Develop a complete understanding of a company's technology and information systems. Design, build, implement and support enterprise-class security systems. Manage and implement security requirements on SDLC (Software Development Life Cycle) DevSecOps oriented. Align organizational security strategy and infrastructure with overall business and technology strategy. Identify and communicate current and emerging security threats. Design security architecture elements to mitigate threats as they emerge. Plan, research and design robust security architectures for any IT project Supervise vulnerability testing, risk analyses and security assessments. Create solutions that balance business requirements with information and cybersecurity requirements. Identify security design gaps in existing and proposed architectures and recommend changes or enhancements. Review and approve installation of firewall, VPN, routers, IDS scanning technologies and servers. Test security systems to ensure they behave as expected. Define, implement and maintain corporate security policies and procedures. Support the IT department in implementation or conversion of systems. Respond immediately to security-related incidents and provide thorough remedial solutions and analysis. Regularly communicate vital information, security needs and priorities to upper management. Ensuring that the organization's data and infrastructure are protected by enabling the appropriate security controls. Participating in the change management process. Daily administrative tasks, reporting, and communication with the relevant departments in the organization.

    What you need to succeed REQUIREMENTS AND COMPETENCES Must have Security architecture, demonstrating solutions delivery, principles and emerging technologies - Designing and implementing security solutions.

    This includes continuous monitoring and making improvements to those solutions, working with an information security team.

    Consulting and engineering in the development and design of security best practices and implementation of solid security principles across the organization, to meet business goals along with customer and regulatory requirements.


    Security considerations of cloud computing:

    They include data breaches, broken authentication, hacking, account hijacking, malicious insiders, third parties, APTs, data loss and DoS attacks.

    Identity and Privileged access management (IAM-PAM) – the framework of security policies and technologies that limit and track the access of those in an organization to sensitive technology resources.

    Experience with Firewalls and network equipment (functionality and maintenance) Cloud SAAS/IAAS Security (AWS-AZURE).

    Experience in PAM/IAM Common solutions Strong knowledge of Vulnerability assessment / Penetration test tools Great awareness of cybersecurity trends and hacking techniques.

    Knowledge of the common SIEM Solution Knowledge of the common DLP Techniques SSE Technologies as ZTN, CASB, SWG Nice to have Relevant National Institute of Standards and Technology (NIST) standards.

    A system that is not in compliance with the standards set by NIST, along with ISO27001, COBIT and COSO (below), will lack both compliance and adequate security architecture.

    ISO27001 – specifications for a framework of policies and procedures that include all legal, physical and technical controls involved in an organization's risk management Control Objectives for Information and Related Technologies (COBIT) Knowledge of Microsoft/Linux/Unix Environment ITIL Certifications Knowledge of the entire SASE stack environment.

    Education Degree in computer science, IT, systems engineering, or related qualification.

    Professional Experience Minimum of 5 years of work experience in a security department with incident detection, incident response, and forensics.

    Languages Fluent English Any other language knowledge is a plus Soft skills Ability to work under pressure in a fast-paced environment.

    Good communication skills Ability to work in team. Strong attention to detail with an analytical mind and outstanding problem-solving skills.

    Other The achievement of Cybersecurity certifications such as:

    Offensive Security - OSCP, ISSAP , ISSEP , SANS-related certifications Education,OSCE, OSWE, EC-Council C | EH (Certified Ethical Hacker), ISACA - CSX Fundamentals, CISSP is a plus.

    Haier Europe is an Equal Opportunity Employer.

    Employment decisions are made without regard to race, color, religion, national or ethnic origin, sex, sexual orientation, gender identity or expression, age, disability, or other characteristics protected by law.