Job Summary:

• Monitor and inspect alerts to determine those that require analysis.
• Respond to security incidents quickly and efficiently.
• Review analytics results, investigate incidents, anomalies and threat hunt.
• Perform mitigation activities and root cause analysis to minimize downtime and mission impact.
• Logging and documentation of security incidents using the ticketing system.
• Provide incident updates to management.
• Assist with the implementation of security procedures.
• Assist in the operation and implementation of Cyber Security Initiatives.
• Maintain up to date knowledge about cyber security and its components.
• Perform daily basic security system health checks

Skills on Resume:

• Alert Monitoring (Hard Skills)
• Incident Response (Hard Skills)
• Threat Analysis (Hard Skills)
• Mitigation Execution (Hard Skills)
• Incident Documentation (Hard Skills)
• Management Reporting (Soft Skills)
• Procedure Implementation (Hard Skills)
• Security System Maintenance (Hard Skills)

Job Summary:

• Conduct infrastructure studies for the definition of solutions according to the needs of specific projects (digital data transport, security, voice, images, audio, video, ...)
• Intervene in the relationship with publishers/integrators and the management of technical projects
• Carry out the production of security systems, participate in operations (physical installation, equipment configuration, documentation)
• Carry out a technological watch and inform on the state of the art
• Carry out control/audit of the proper application of procedures and compliance of computer systems (vulnerability scans, penetration tests, etc.)
• Participate in the maintenance/support of security systems on site and on call
• Manage alerts and security incidents and perform forensics
• Collaborate with counterparts in other divisions and with international teams. 
• Provide advice and assistance in projects or budgetary studies
• Participate and lead local and international meetings
• Participate in the drafting and updating of reference documents (security policy, etc.)

Skills on Resume:

• Infrastructure Analysis (Hard Skills)
• Project Management (Soft Skills)
• System Installation (Hard Skills)
• Technological Surveillance (Hard Skills)
• Compliance Auditing (Hard Skills)
• System Maintenance (Hard Skills)
• Incident Handling (Hard Skills)
• Cross-Division Collaboration (Soft Skills)

Job Summary:

• Testing and identifying network and systems vulnerabilities.
• Daily administrative tasks, such as reporting and communication with the relevant departments in the organization.
• Policy & Procedure design and implementation for platforms, technologies and Frameworks.
• Coordinate with teams for various projects and participate in discussions continuously.
• Contribute to tool evaluation, selection and recommendation to management.
• Prepare and deliver security training programs for different internal and external teams.
• Coordinate the construction of labs and PoC to improve project and service delivery from security perspective.
• Periodic monitoring of the security solutions implemented into the CI/CD pipeline to ensure that solutions are running as expected.
• Evaluate all SAST and DAST reports and actively track the issues in the ticketing system.
• Assist the security manager with integrating the SAST/DAST tool with ticketing systems and ensure effective integration.

Skills on Resume:

• Vulnerability Testing (Hard Skills)
• Administrative Coordination (Soft Skills)
• Policy Development (Hard Skills)
• Team Collaboration (Soft Skills)
• Tool Evaluation (Hard Skills)
• Security Training (Soft Skills)
• Lab Coordination (Hard Skills)
• Security Monitoring (Hard Skills)

Job Summary:

• Periodic evaluation for issues highlighted by Azure Security Center, prioritizing them, assigning to the right teams, and ensure closure of the issues.
• Continuous evaluation of the Software Composition Analysis findings and assist developers with right approach for fixing them.
• Assist security manager with implementation of a vulnerability management program for various Azure subscriptions.
• Assist teams with security hardening of virtual machines and other resources on Azure.
• Continuous user access reviews on different applications and platforms.
• Assist security manager in enhancing endpoint security for various virtual machines in Azure.
• Assist security manager with implementation of compliance-as-code initiative.
• Assist security manager with various security initiatives as per the security strategy.
• Assist security manager with various compliance related activities, like GDPR.
• Assist security manager with defining and correlating data related to security KPIs and KRIs.

Skills on Resume:

• Issue Prioritization (Hard Skills)
• Analysis Support (Hard Skills)
• Vulnerability Management (Hard Skills)
• Security Hardening (Hard Skills)
• Access Reviews (Hard Skills)
• Endpoint Security (Hard Skills)
• Compliance Automation (Hard Skills)
• KPI Management (Hard Skills)

Job Summary:

• Protecting information from unauthorized access, duplication, modification, or destruction.
• Defining suitable security measures during the design and development stages of software systems, networks and data center implementation
• Analyzing status of security measures implemented to protect information and related assets.
• Testing for possible security weaknesses and known vulnerabilities.
• Administrate security related solutions and tools.
• Running vulnerability tests and updating defensive protocols and systems accordingly.
• Granting access and credentials to authorized users.
• Monitoring access to the information and assets
• Checking for non-authorized changes of information or system configurations.
• Running defensive protocols and programs when security incidents or breaches occur.
• Defining and maintaining regular status reports on security compliance.

Skills on Resume:

• Data Protection (Hard Skills)
• Security Design (Hard Skills)
• Security Analysis (Hard Skills)
• Vulnerability Testing (Hard Skills)
• Security Administration (Hard Skills)
• Access Control (Hard Skills)
• Incident Response (Hard Skills)
• Compliance Reporting (Hard Skills)

Job Summary:

• Planning, implementing, managing, monitoring and upgrading security measures for the protection and risk mitigations of the organisation’s data, systems and networks.
• Develop and design application security framework review existing application architecture and continuously provide suggestions for improvement.
• Work with product team to implement security within application designing phase and highlight risks and associated mitigations.
• Work with developers to define security checkpoints in SDLC based on standards and best practices.
• Design and implement secure software development life-cycle solutions based on various tools.
• Ensure that the application data is protected by enabling the appropriate security controls.
• Provide technical advisory for the weaknesses and vulnerabilities identified in application code as well as the processes and implemented tools.
• Liaise with Legal and Compliance teams on the continual internal and external security assessments and audit reviews conducted by regulators and operators.
• Conduct application security risk assessment and liaise with IT teams in implementing security controls.
• Develop secure coding standards that are based on industry best practices such as OWASP Guide, SANS CWE Top 25, or CERT Secure Coding to address common coding vulnerabilities.

Skills on Resume:

• Security Management (Hard Skills)
• Framework Design (Hard Skills)
• Risk Mitigation (Hard Skills)
• SDLC Security Integration (Hard Skills)
• Secure Coding Standards (Hard Skills)
• Technical Advisory (Hard Skills)
• Compliance Liaison (Soft Skills)
• Security Assessments (Hard Skills)

Job Summary:

• Monitor and Coordinate Directory Services and Directory synchronization
• Maintain and update configuration management of the NEDS components
• Analyze operational problems and validate changes to the Product Baseline
• Perform tests and document the results
• Support the evolution and extension of the NEDS system by connecting new systems and/or modifying existing affiliations.
• Bringing security into the day-to-day work of the teams.
• Develop the process for a secure software lifecycle and continuously optimize it in line with the latest standards.
• Advising teams and establishing an expert group of security-savvy developers across all development teams within MAN.
• Solving architecture issues with the teams.

Skills on Resume:

• Directory Management (Hard Skills)
• Configuration Updates (Hard Skills)
• Operational Analysis (Hard Skills)
• System Testing (Hard Skills)
• System Extension Support (Hard Skills)
• Security Integration (Soft Skills)
• Lifecycle Development (Hard Skills)
• Architecture Solutions (Hard Skills)

Job Summary:

• Develop corporate strategies relating to Cyber Security Supply Chain management, leading their deployment into the business on a worldwide scale.
• Identify vulnerabilities and risks and collaborate with suppliers and developers to implement security controls.
• Develop and maintain departmental and company standards & procedures.
• Establish and deploy best practice and knowledge transfer via formal training as well as informal mentoring.
• Build corporate capabilities in these areas, including supporting recruitment activities.
• Ensure continuous improvement through effective lessons learned, knowledge capture and process development compliant with standards such as ISO21434.
• Be an advocate for cyber security as a core business priority.
• Liaise with third parties to represent their interest in the project / product development.
• Support internal and external certification activities, audits, and cybersecurity standards reviews.

Skills on Resume:

• Strategy Development (Hard Skills)
• Risk Identification (Hard Skills)
• Standardization (Hard Skills)
• Knowledge Transfer (Soft Skills)
• Capability Building (Soft Skills)
• Continuous Improvement (Hard Skills)
• Cyber Advocacy (Soft Skills)
• Third-Party Liaison (Soft Skills)

Job Summary:

• Act as the Cyber Security representative on large projects providing advice on the implementation of cyber security policies and standards
• Partner with team members, key customers, partner companies and stakeholders to improve cyber security risk management
• Identifying cyber security risk using a defined methodology and delivering proportionate risk mitigations through identification and implementation of controls.
• Develop and implement new security policies and processes to address continuous change and evolution of cyber.
• Providing advice on suitable tactical and strategic solutions focused on business priorities, including authoritative advice and guidance on the application and operation of security controls
• Support in managing SIEM, operational intelligence and threat management solutions for 24/7 business
• Work independently to take up tasks and lead projects that would improve the overall cyber security maturity of the organization
• Work on complex cyber security incidents with a focus on remediation and closing the incident 
• Validate security configurations of and access to security infrastructure technology, including firewalls and anti-malware/endpoint protection systems.

Skills on Resume:

• Policy Advisory (Hard Skills)
• Stakeholder Partnership (Soft Skills)
• Risk Identification (Hard Skills)
• Policy Development (Hard Skills)
• Strategic Advising (Soft Skills)
• SIEM Management (Hard Skills)
• Project Leadership (Soft Skills)
• Incident Remediation (Hard Skills)

Job Summary:

• Define and maintain cybersecurity requirements and technical specifications for multiple automotive ECUs in several vehicle domains: Infotainment, Body & Comfort, Powertrain and Chassis
• Support the definition of testing methodologies and processes to meet cybersecurity goals and requirements and assess the relative implementation by the supplier
• Responsible for Threat Analysis and Risk Assessment (TARA). 
• Identify assets and damage scenarios, assessment of impact levels, identification of possible attack scenarios, definition of attack paths and probability of attack, risk level assessment
• Collaborate with internal and external stakeholders (ECU Component Responsible, Functional Safety Mangers, Tier-1 supplier, Service providers) to collect and share relevant information, analysis of deviations and/or issues supporting a consistent implementation of cybersecurity specifications
• Enabling future mobility by secure, safe, and reliable components and services
• Plan, Develop and execute Security Training courses
• Development and Roll out of a Security Knowledge Management Concept
• Introducing security and privacy to each phase of products’ life cycles
• Enabling customers building trusted automotive systems and infrastructures
• Work with local Standard and Regulatory bodies

Skills on Resume:

• Cybersecurity Specifications (Hard Skills)
• Testing Methodology Support (Hard Skills)
• Threat Analysis (TARA) (Hard Skills)
• Risk Assessment (Hard Skills)
• Stakeholder Collaboration (Soft Skills)
• Security Training (Soft Skills)
• Knowledge Management (Soft Skills)
• Regulatory Compliance (Hard Skills)

Job Summary:

• Assessing, shaping, and designing secure capabilities related to Cloud Security and Information Protection
• Supporting the Microsoft Azure Cloud Platform configuration and administration of security features and services
• Consulting on a dynamic cyber defense strategy and leveraging security solutions to deliver best in class cyber security controls that are consistent with industry frameworks
• Coordinating, developing, and communicating information security standards and documentation that promote safe and secure delivery of I/T Systems and Applications.
• Collaborating, advising, and consulting key stakeholders on appropriate application of security practices and existing security services to solve problems or enable new business opportunities
• Reviewing, evaluating, and recommending third party products and tools that will improve security within the environment while ensuring alignment with Dow’s Cyber Security Architecture strategy
• Assist with the collection and maintenance of manufacturing systems inventories present at Signify sites, along with security-specific attributes and configuration details.
• Perform cybersecurity risk assessments of Signify manufacturing sites and systems, then provide recommendations and assist local stakeholders to improve their overall level of security.
• Advise the global IT program rolling out the SAP MES cloud platform on security best practices, tailored to each team member implementation’s challenges.
• Provide input and review to the Information Security policy and control framework for controls specific to manufacturing environments.
• Ensure comprehensive updates and reporting to higher Corporate Security Management
• Lead and contribute practically to key projects, ensuring their compatibility with the strategic direction

Skills on Resume:

• Cloud Security (Hard Skills)
• Azure Administration (Hard Skills)
• Cyber Defense (Hard Skills)
• Security Standards (Hard Skills)
• Stakeholder Consulting (Soft Skills)
• Tool Evaluation (Hard Skills)
• Risk Assessment (Hard Skills)
• Project Leadership (Soft Skills)

Job Summary:

• Provide specialist advice in accordance with national and local IT security policies and best practice to meet its Cyber Security obligations.
• Providing expert specialist Information Security advice to the Trust consistent with National and Local Security standards and best practices. 
• Working alongside the Cyber Security Manager, Deputy Security Manager, and other Senior Technical Managers to assist in evaluating, recommending, and implementing infrastructure and systems that will assist with mitigating threats and vulnerabilities
• Reducing the risk of a cyber incident significantly impacting the Trust’s normal operations.
• Work closely with the Counter Fraud Service (CFS), Police, and other external bodies when investigating incidents.
• Contribute to the collaborative approach to Cyber Security across the Local Resilience Forum (LRF), and Integrated Care System (ICS).
• Assist with incident management in the event of a Cyber Incident. 
• Assist in the administration of alert reporting and escalation or mitigation 
• Through proactive monitoring, identify, understand, and prioritise, threats and vulnerabilities and provide appropriate remediation, mitigation, or escalation.
• Support, monitor, and manage the deployment process of all emergency updates and security patches across the Trust.
• Work closely with the Trust’s Resilience Team to ensure the incident planning for major incident relating to Cyberattacks is robust, and where possible undertaking any exercise that maybe helpful for Business Continuity Planning.

Skills on Resume:

• Security Expertise (Hard Skills)
• Risk Mitigation (Hard Skills)
• Incident Management (Hard Skills)
• Stakeholder Collaboration (Soft Skills)
• Threat Monitoring (Hard Skills)
• Patch Management (Hard Skills)
• Continuity Planning (Hard Skills)
• Strategic Advising (Soft Skills)

Job Summary:

• Contribute to the establishment of an effective continuous threat and vulnerability monitoring program.
• Establish compliance monitoring procedures to ensure security controls are working.
• Monitor and analyse threats, and aid with incident detection, log analysis and monitoring.
• Develop an Incident Response Plan and document procedures, tools, and training about Incident Response Plan processes.
• Contribute to the establishment of, and document procedures for, an effective continuous vulnerability monitoring program as part of the Assurance Plan.
• Implement automated metrics and reporting from continuous monitoring and improvement processes across the university.
• In accordance with authorised procedures, perform internal and external vulnerability assessment and work with affected stakeholders to implement remediation plans.
• Assist with implementing logging, monitoring SIEM alerts and log analysis
• Help detect, analyse, and escalate incidents as required in accordance with established Incident Response Plan and assist other teams with the resolution of incidents in accordance with the IRP.
• Prepare documentation and technical reports relating to security processes, procedures, and guidelines (eg, secure configurations)
• Support the Cyber Security Team functions and work collaboratively with other team members and stakeholders 

Skills on Resume:

• Threat Monitoring (Hard Skills)
• Compliance Procedures (Hard Skills)
• Incident Detection (Hard Skills)
• Response Planning (Hard Skills)
• Vulnerability Assessment (Hard Skills)
• Metrics Implementation (Hard Skills)
• Incident Escalation (Hard Skills)
• Team Collaboration (Soft Skills)