IT Security Operations Senior Manager (Brussels/Hasselt)

Job description

Mission

The information security operations senior manager is a critical agent in the Information Risk Management process ensuring that EDFL IT operating environment is protected against any potential thread which may cause service interruption, high financial losses, brand and reputation damages.

He is responsible for preventing that data integrity, availability and confidentiality  would be compromised.

As process owner for security incident response, SOC incident response, he is responsible for designing and operating incident management processes:

  • Aiming minimizing damages that could be caused by such incidents
  • Respecting legal obligations
  • Meeting service levels requirements
  • Strives to a cost efficient automation of processes
  • Defines and enforces respect of security procedures.
  • Motivates IT and users community to act in line with security policy and procedures.
    • Development and maintenance of security policies and associated standard operational procedures
    • Document,implement security operations policies and procedures on easily accessible media.
    • Define an awareness program and inform IT and users community on a regular basis on new type of risk
    • Organize the incident queues monitoring and the incident response activities. Identify and respond to security incidents, both technical and non-technical, define the remediation plan and remediation activities in line with impacted stake holders.
    • Liaise with the Group Security Operations Center for aligning on procedures and optimizing the treatment of events.   
    • Test the security robustness of applications and environments by organizing penetration test and vulnerability tests.
    • Participate to security development standards definition and assess compliance of delivered applications.
    • Define security operations plans and planning (OS and security patching,…)
    • implement monitoring and produce relevant reporting.
    • Implement tools such Cryptography and cryptanalysis.
    • Perform forensics when necessary.
    • Support implementation of security related/centric projects.

As process owner for identity and access management for accounts and privileged accounts, he is responsible for designing and operating processes aiming at granting appropriate credentials enabling data and application users to fulfill their tasks and control access to their resources.

As security operation point of contact, he actively participates to internal and external security audits to identify recommendations and points of improvements and follow their implementation.

To reach his objectives he /she :

He interfaces and aligns with all the security key players such CISO , DPO and ISO , Group SOC responsible to maximize efficiency of implemented processes and guarantee the highest protection level.

In collaboration with the Security Governance lead, acts as an empowered representative of the Information Risk Management leader during IT planning initiatives to ensure that security measures are incorporated into strategic IT plans and that service expectations are clearly defined.

He liaises with the DC senior manager and Network-CTI senior manager to define the security requirements to be implemented in the EDF IT operating environment.

 

As member of the SMI management team, he is responsible for contributing to the SMI and IT strategy and governance.

  

Security operations tasks

  • Development and maintenance of security policies and associated standard operational procedures
  • Document,implement security operations policies and procedures on easily accessible media.
  • Define an awareness program and inform IT and users community on a regular basis on new type of risk
  • Organize the incident queues monitoring and the incident response activities. Identify and respond to security incidents, both technical and non-technical, define the remediation plan and remediation activities in line with impacted stake holders.
  • Liaise with the Group Security Operations Center for aligning on procedures and optimizing the treatment of events.   
  • Test the security robustness of applications and environments by organizing penetration test and vulnerability tests.
  • Participate to security development standards definition and assess compliance of delivered applications.
  • Define security operations plans and planning (OS and security patching,…)
  • implement monitoring and produce relevant reporting. 
  • Implement tools such Cryptography and cryptanalysis.
  • Perform forensics when necessary.
  • Support implementation of security related/centric projects.

Identity & Access Management  tasks 

  • In cooperation with HR and users departments, development and maintenance of policies and associated standard operational procedures
  • Define, document, implement IAM and PIAM operations procedures.
  • Control that IAM and PIAM procedures are run in line with SLRs
  • Audit IAM and PIAM procedures and remediate to deviation
  • Inform external parties about IAM and PIAM procedures
  • Escalate when procedures are not respected
  • Follow up automation of IAM and PIAM processes.
  • Liaise with application owners to optimize IAM and PIAM processes
  • Liaise with the service catalog owner to offer IAM services as standard services

Requirements

Technical skills

 

  • Security Certification is an asset ( ISO 27001, CISM,….)
  • Knowledge of PAM and PIAM tools
  • Knowledge of SOC and SIEM tools.
  • Fair understanding of Infrastructure and software generic components (network technology , Operating systems , DBMS, development languages, …)
  • Very good market knowledge about “as a service “delivery model.
  • ITIL v3 and more specifically Service Management Processes
  • Fair Knowledge of Service Management tools.
  • Process design

Social skills

 

  • Comfortable in a multi-cultural environment.
  • Ability to advise and interact with all levels of management
  • Customer Focus: understand needs of the customer 
  • Organisational skills in order to manage and prioritise work and initiatives under deadlines
  • Excellent communication (written and oral) and presentation skills
  • Supportive driving source for your environment
  • Strong influence skills
  • Comfortable in operating in a fast-changing environment as a change enabler to internal clients
  • Ability to work creatively and analytically in a problem-solving environment, critical and constructive
  • Business oriented – always acts by putting actions in perspective of targeted business results.
  • Stress resistant and demonstrate patience, tolerance and resilience

 The ideal candidate

  • has a master’s degree (preferably IT) or gained equivalent knowledge by relevant work experience
  • has at least 10 years of work experience in IT Service Management or  in Security operations
  • has Experience in IT Service Management product (ServiceNow – Remedy - …)
  • has Strong ITIL Lifecycle knowledge and Service Level Management skills. Knowledge of ITIL Lifecycle V3 is  (Foundation + additional certificate)
  • is business proficient (B2+) in English and native either in Dutch or French.