The Security Officer (IT Operational Security) is responsible for ensuring the integrity, protection, and availability of our client's digital assets and IT environments through the implementation and coordination of operational security practices.
Operating under the cybersecurity governance led by the CISO and the Head of IT Department, the Security Officer bridges the gap between strategic security objectives and day-to-day IT execution, particularly across infrastructure, networks, endpoints, and access controls.
He/she plays a key role in supporting NIS2 compliance, coordinating vulnerability management, and reinforcing operational readiness in collaboration with the Support & Operations, TechOps, Digital Solutions, and Governance & Architecture teams.
Roles & Responsibilities
1. Operational Security Execution
* Implement security policies and controls as defined by the CISO.
* Coordinate vulnerability scanning, patch management, and secure configuration standards across IT systems.
* Ensure day-to-day operations of firewalls, VPNs, IDS/IPS, endpoint protection, and monitoring tools.
2. Security Monitoring & Incident Coordination
* Supervise the work of Cyber Analysts and interact with the SOC for continuous monitoring.
* Coordinate initial analysis and escalation of security alerts and incidents.
* Support incident response actions in collaboration with TechOps and InfoSec.
3. Network & Access Security Oversight
* Maintain the reliability and security of LAN/WAN and cloud networks.
* Oversee secure access management practices for users, applications, and services.
* Collaborate with the TechOps Lead and Infrastructure teams to enforce segmentation, zoning, and authentication controls.
4. Project Support & Architecture Input
* Lead the design and validation of secure architecture for infrastructure and applications.
* Ensure security requirements are integrated into project specifications.
* Act as security point of contact for infrastructure transformation, cloud migration, and network expansion projects.
5. Documentation & Operational Compliance
* Maintain up-to-date documentation of security procedures, configurations, and incident reports.
* Support compliance with internal standards and NIS2 operational controls.
* Contribute to internal audits and readiness assessments.
6. Collaboration & Coordination
* Act as the operational liaison between TechOps, InfoSec, and the CISO for all security-related matters.
* Provide coaching and guidance to technical teams on secure practices.
* Participate in cross-functional crisis simulation and DRP testing.
Key Success Factors
* High level of protection and availability across IT systems and networks.
* Proactive detection and effective handling of security incidents.
* Strong collaboration with SOC, CDT, and operational teams.
* Compliance with applicable regulatory and internal security standards.
* Documented, repeatable, and auditable operational security practices.
* Ability to support transformation projects with security-by-design mindset.