Information Security Management Consultant

Noesis is looking for a Managed Services Coordinator to integrate our Business Unit of IT Operations, Cloud & Security:

Main Tasks and Responsibilities:

• Work with the team on assessments and audit projects as well as policies & procedures definition initiatives and
• framework/best practices implementations (e.g. information security management and/or business continuity, etc.);
• Support in the development, documentation and implementation of reference security architectures, action plans and other controls and activities aligned with policies, standards and best information security practices;
• Collaborate with other members of the various business units, information systems and the security operations center (SOC), ensuring that the implementation and operation of the systems are in line with security standards and best practices;
• Establish recommendations related to the architecture of applications and Cybersecurity infrastructure, following the concept of "Security by Design";
• Manage proofs of concept that evaluate the framework of new technologies in the implementation of improvements in architecture, considering the evolution of threats and trends of digital transformation;
• Follow-up and reporting (figures, alerts,…) of IT recommendations implementation (IG/Regulator/external/Permanent Control actions) in order to meet Group objectives;
• Ensure that procedures, control plans, methods and tools are in place;
• Measure and analyze the efficiency of the controls;
• Collect and analyze the results and actions plans with a critical vision;
• Identify risks from control non-compliances and propose mitigation actions plans;

Profile:

• Master or Bachelor degree in Computer Science, Information Technology, Engineering or equivalent field of studies;
• At least 5 years professional experience in technology and security functions;
• Experience in cybersecurity and risk assessments, preferably in roles such as security analyst, security engineer, or security consultant;
• Profound knowledge of the overall IT enterprise landscape, OT landscape, IT architecture, security architecture, security building blocks, network security and concepts such as security testing, cloud security and hybrid cloud setup;
• Professional security certification such as ISO27001, CISSP, CISM, CISA, CRISC or similar;
• Technical expertise, conceptional thinking, strong analytical skills, and a deep understanding of cyber security principles to assess and improve architecture security effectively;
• Strong communication and presentation skills;
• Experience with security frameworks and methodologies, such as CIS Security, NIST, OWASP and Mitre Attack;
• Knowledge and experience in one or more of the following:
• ISO27001, NIS2, Dora, NIST800-53, ITGC, GDPR, Business processes transformation, Change management, Business Continuity,…
• Strong consulting skills: communication and presentation skills, ability to manage projects, working with people and technology;
• Experience with process design tools and MS Office.
• Fluency in English and Portuguese;

If you meet these requirements and are interested in joining an audacious and innovative company, please send us your application.

Join us. Let’s innovate together!

- Job advertisement under Law nr 4 / 2019, of 10th January

Join us in: Information Security Management Consultant -Lisbon