Cyber Security Risk Assurance Consultant
Are you passionate about #AI and #cybersecurity? Do you love working with high profile teams with a sure taste of challenge and variety? You dream to join a fast-growing company with start-up mentality? Eager to learn continuously? Join Proximus Ada!
Within this Proximus’ first Belgian center of excellence combining artificial intelligence and cybersecurity, the mission of the Security Management and Incident Response divisions is to protect Proximus, its customers, its business, its operations, and its reputation against any threats, external and internal. You will be fascinated by a highly dynamic environment, a strong collaboration, and very deep technical aspects.
To enlarge the team of the Security-By-Design domain, we are looking for a Cyber Security Risk Assurance Consultant.
Your Role:
1. Perform a complete cyber security risk assessment of new projects or changes to existing applications, infrastructure components, or services, following the Secure-By-Design process and using our GRC tool.
2. Ensure that the new projects (or changes to existing systems and platforms) are compliant with Proximus security policies, international standards, and European or Belgian laws and regulations that Proximus has to comply with.
3. Identify and document all the security risks raised by the new technologies introduced into the company in the IT, Telecommunications, and Internet landscapes and propose the relevant mitigating measures based on existing risk frameworks.
4. Provide security requirements to be included in Request For Quotation and Request For Proposal’s and evaluate vendor responses.
5. Ensure supply chain security by conducting a complete and cycling third-party security risk assessment.
6. Support the business project stakeholders during the implementation of the provided security requirements.
Your Profile:
1. Bachelor’s in IT and/or cyber security or equivalent combination of education and experience.
2. Past experience (minimum 2 years) in performing cybersecurity risk assessments following standard and/or proprietary frameworks.
3. Industry recognized cybersecurity certification(s): CISSP or CISM are highly considered.
4. Very good interpersonal skills, mixing collaboration & communication skills, open-mindedness, and constructive assertiveness.
5. Eager to learn, very curious, and wants to develop continuously.
6. Able to work in an environment which is continuously changing using an Agile development style.
7. Background in network engineering or web engineering is certainly a plus.
8. Some knowledge in recent telecommunication technologies (5G, IoT, …).
9. Language skills: fluent in English (spoken and written).
#J-18808-Ljbffr