This Job Vacancy has Expired!

Principal Cyber Security Engineer

Posted on Apr 17, 2021 by E-Frontiers

Cork, Ireland
IT
Immediate Start
€95k - €95k Annual
Full-Time


We are looking for an ambitious and experienced security expert capable of taking responsibility for our digital security and understand the Risk Acceptance profile of a large Financial entity. We need to ensure internal and external awareness of all aspects of cyber security and are looking for someone to support our organisation on all things security.

What you will do:

Develop, maintain and enforce key security policies.
Maintain and improve infrastructure and tools in place to ensure highest security standards
Ensure Cyber Security Risk Register is always up to date, accurate, exhaustive and concise
Build, maintain and drive implementation of world class Cyber Security Roadmap
Work closely with compliance department to ensure we meet necessary regulatory obligations
Assist in the completion of security questionnaires
Manage and lead Security Audits and Assurance Visits (GDPR, Cyber Security)
Assist presales with the security part of RFIs/RFQs/RFPs
Work with third party penetration testing organisation to complete annual penetration tests
Working in the role of Product Owner for a Scrum team to deliver best-in-class security for web/mobile applications
Provide training to IT teams and wider company on security best practices
Update SSAE16 controls from IT standpoint and work with auditors during annual review
Assess, advise and help implement appropriate information security frameworks (ISO 27001/2, SOC 2, NIST, ISF)
Ensure Global Shares follows data protection best practices and are GDPR compliant
Set up and review automated Infrastructure security scans and ensure vulnerabilities are addressed in a timely manner
Perform security due diligence on third party vendors
Advise and assist development teams regarding security best practices. This will be aided by Static Application Security Testing (SAST) tools and penetration testing results
Develop and maintain Security training programmes (eg Phishing awareness), including follow up testing, with assistance from with Learning & Development department
Identify security gaps or weaknesses and provide recommendations on how these can be resolved
Review and/or perform Proof of Concept of Cyber Security tools/solutions and make recommendations based on best practice, risk, price, etc.. For example SAST, DAST, SIEM,
Develop and roll out Application Security Training for Delivery Team (Devs + QA)

What you have:

Passion of IT and security in particular
Degree in computer science, mathematics or a related technical field (or equivalent by experience)
A minimum of four years experience in the field of cyber security
A very strong knowledge of the current cyber security landscape
Experience within the Financial Services sector and knowledge of recent legislation pertaining to it

Nice To Have:

Knowledge of Azure Hosting
Knowledge of the Microsoft SDL
Experience in software delivery using a Agile Scrum methodology is an advantage
Experience with software development tools would be advantageous
Knowledge of OWASP coding standards
Experience is managing Intrusion Detection Systems (IDS) automated scanning
Knowledge/Experience in Security Information and Event Management ( SIEM ) technologies
Knowledge/Experience in Office 365 security and compliance features
Knowledge/Experience of the OWASP Application Security Verification Standard (ASVS) Project
Passive knowledge of MS.NET (ie can read & understand the code)




Reference: 1169606082

Set up alerts to get notified of new vacancies.