Global Cybersecurity Analyst (CSIRT)
World Vision International
Ecuador - Basado en el Hogar (Home Working)
hace 4 días

With over 70 years of experience, our focus is on helping the most vulnerable children overcome poverty and experience fullness of life.

We help children of all backgrounds, even in the most dangerous places, inspired by our Christian faith.

Come join our 34,000+ staff working in nearly 100 countries and share the joy of transforming vulnerable children’s life stories!

Key Responsibilities :

Individuals working as Global Cybersecurity Analyst are responsible for working on security projects / issues for one or more functional areas (e.

g., data, systems, network and / or Web) across the enterprise, develop security solutions for medium to complex assignments, work on multiple projects as a team member and lead systems-related security components.

They provide expertise and assistance to all IT projects to ensure the company’s infrastructure and information assets are protected.

Individuals within the IT Security job family plan, execute, and manage multi-faceted projects related to compliance management, risk assessment and mitigation, control assurance, business continuity and disaster recovery, and user awareness.

They are focused on developing and driving security strategies, policies / standards, ensuring the effectiveness of solutions, and providing security-focused consultative services to the organization.

Individuals develop, execute and manage data, system, network and internet security strategies and solutions within a business area and across the enterprise.

They develop security policies and procedures such as user log-on and authentication rules, security breach escalation procedures, security auditing procedures and use of firewalls and encryption routines.

To guide enforcement of security policies and procedures, they administer and monitor data security profiles on all platforms by reviewing security violation reports and investigating security exceptions.

They update, maintain and document security controls and provide direct support to the business and internal IT groups. IT Security professionals evaluate and recommend security products, services and / or procedures.

They also communicate and educate IT and the business about security policies and industry standards, and provide solutions for enterprise / business security issues.

IT Security professionals require strong technical, analytical, communication and consulting skills with knowledge of IT Security and related technologies.

Security certifications (i.e Certified Information Systems Security Professional (CISSP), Certified in Risk and Information Systems Control (CRISC), Certified Information Security Manage (CISM), Global Information Assurance Certification (GIAC) and / or other certifications) may be required.

MAJOR RESPONSIBILITIES

POLICIES, PROCESSES, & STANDARDS :

Maintains an up-to-date understanding of industry best practices. Monitors compliance with security policies, standards, guidelines and procedures.

Ensures security compliance with acceptable use policy.

INCIDENT MANAGEMENT :

Provides responsive support for incidents found during normal working hours as well as outside normal working hours. Monitors security tools to identify threats to World Vision.

Identifies and resolves incidents. Manages incident records and reports.

RISK ASSESSMENTS :

Works directly with the customers and other internal departments and organizations to facilitate IT risk analysis and risk management processes and to identify acceptable levels of residual risk.

Analyzes security analysis reports for security vulnerabilities and recommends feasible and appropriate options. Creates, disseminates and updates documentation of identified IT risks and controls.

Reports on significant trends and vulnerabilities. Develops plans to achieve security requirements and address identified risks.

Follows up on deficiencies identified in monitoring reviews, self-assessments, automated assessments, and internal and external audits to ensure that appropriate remediation measures have been taken.

PROBLEM MANAGEMENT :

Provides responsive support for problems found during normal working hours as well as outside normal working hours. Identifies and resolves root causes of security-related problems.

TRAINING :

Assists in the development of security awareness and compliance training programs. Provides communication and training as needed.

May guide users on the usage and administration of security tools that control and monitor information security.

COACHING / MENTORING

Mentors less experienced team members.

Minimum education, training and experience requirements to qualify for the position :

Bachelor’s Degree in Computer Science, Information Systems or other related field, or equivalent work experience. Work experience in cyber incident response Work experience in designing and implementing incident response process, standards, and playbooks Work experience in designing and implementing incident response training

Typically has 3-5 years of combined cybersecurity work experience with a broad range of exposure to cyber incident response management Willingness and ability to travel domestically and internationally, as necessary Work experience in security management, risk management, and IT service management.

Effective in written and verbal communication in English.

Preferred Skills, Knowledge and Experience :

CISSP certification

Incident management experience

Threat Management experience

Risk management experience

Security training experience

Complete Travel and / or Work Environment statements if applicable :

  • The position requires ability and willingness to travel domestically and internationally up to 20% of the time.
  • Reportar esta oferta
    checkmark

    Thank you for reporting this job!

    Your feedback will help us improve the quality of our services.

    Inscribirse
    Mi Correo Electrónico
    Al hacer clic en la opción "Continuar", doy mi consentimiento para que neuvoo procese mis datos de conformidad con lo establecido en su Política de privacidad . Puedo darme de baja o retirar mi autorización en cualquier momento.
    Continuar
    Formulario de postulación