Job Summary: 

• Work with engineering squads (Developers, SREs and QAs) to ensure that projects are secure on delivery
• Provide engineering teams with guidance in security web applications, APIs and Cloud Native Services
• Coordinate and perform technical application security assessments and reviews
• Explain the risk and criticality of identified vulnerabilities to business owners/technical teams and advise on remediation activities
• Support engineering teams with security remediations, helping them meet agreed KPIs and SLAs
• Conduct application threat modelling, supporting the definition of security requirements and controls
• Integrate security tools and capabilities into product teams’ CI / CD pipelines as part of SDLC
• Build/maintain/support security testing tools
• Manage and coordinate third-party penetration tests of GfK products
• Provide application security coaching and training to junior security peers and engineering colleagues
• Contribute to defining and maintaining the application security framework and associated standards
• Use of dynamic and static security testing tools to assess GfK product artefacts, such as source code, third-party libraries and containerised environments
• Support SOC during security incidents involving Cloud environments and/or web services
• Take a lead role in GfK’s Application Security Community of Practice (CoP)

Skills on Resume: 

• Security Assessment (Hard Skills)
• Threat Modelling (Hard Skills)
• Vulnerability Management (Hard Skills)
• CI/CD Integration (Hard Skills)
• Cloud Security (Hard Skills)
• Team Collaboration (Soft Skills)
• Risk Communication (Soft Skills)
• Technical Coaching (Soft Skills)

Job Summary: 

• Support or direct information security-related functions such as Firewall Security, Intrusion Prevention, Communications, Incident Response, Encryption, Access Control, Threat Management, Cyber Forensics, McAfee AV, Vulnerability Management and other security-related functions
• Make recommendations for improvements to the program, respond to alleged policy violations and act as a participant in the investigation in the event of a breach
• Perform Vulnerability Scans and analyze findings
• Initiate escalation procedure to counteract potential threats/vulnerabilities
• Engage in decision-making with the team involving security, incident response, and security process improvements in infrastructure and applications
• Participate in security audits, risk analysis, vulnerability testing, incident response, and security reviews on many elements of systems
• Prepare da etailed written analysis of incidents with remediation and prevention documentation
• Work closely with the other technology areas to ensure that security is properly implemented across the environment
• Provides analytical and technical security recommendations to other team members
• Function as a technical lead during a security incident response

Skills on Resume: 

• Incident Response (Hard Skills)
• Vulnerability Scanning (Hard Skills)
• Threat Management (Hard Skills)
• Security Auditing (Hard Skills)
• Risk Analysis (Hard Skills)
• Process Improvement (Soft Skills)
• Technical Leadership (Soft Skills)
• Team Collaboration (Soft Skills)

Job Summary: 

• Accountable for monitoring the Security Operations Center (SOC) events and incident investigations
• Oversee the delivery of complex security services, manage relationships and issues
• Lead the IT Security function for the business, managing IT Security internally and externally including outside specialists and ensuring their work and output align with the organizational needs and priorities
• Accountable for developing the IT security culture and awareness program for employees
• Ensure that both Applications and Infrastructure are delivered in adherence to IT security standards
• Responsible for brand and domain protection and surveillance
• Identify new security opportunities and challenges and ensure action is taken to eradicate risks
• Promote awareness of strategic initiatives and encourage self-sustaining security practices and behaviours within delivery teams
• Operate as a key member of the IT Operations technical delivery team with a focus on security protection
• Effective risk management of threats and incidents
• Leading the internal IT function on security processes
• Report to IT leadership any breaches of regulatory requirements or security standards
• Implement best practices for Secure Design, Threat Modelling and heuristic/signature endpoint detection

Skills on Resume: 

• Security Monitoring (Hard Skills)
• Incident Management (Hard Skills)
• Risk Management (Hard Skills)
• Secure Design (Hard Skills)
• Threat Detection (Hard Skills)
• Leadership (Soft Skills)
• Security Awareness (Soft Skills)
• Strategic Planning (Soft Skills)

Job Summary: 

• Responsible for developing Security policies
• Participate in periodic penetration tests
• Analyse the Environment and collaborate with the IT Operations technical team to implement a new operational model for security engagement
• Assist with GDPR compliance and security best practices
• Management and maintenance of all Third-Party engagements and contracts, ensuring compliance and SLA delivery
• Undertake assurance assessments of Third-Party suppliers
• Provide expert technical support during incidents
• Aligning IT risk management to the organisation's overall approach and ensuring process implementation, including training
• Reviewing the existing technical environment globally, propose changes, and manage changes to improve IT Security
• Embedding security into all stages of the software development life cycle/delivery methodologies
• Demonstrate resilience under very demanding pressures and circumstances
• Own, build, define, manage, audit and monitor business continuity plans and create quantifiable KPI’s that measure critical systems security and recovery
• Ensure business continuity plans and SLA agreements are audited annually and targets are communicated and approved by the VP IT and the Executive leadership team

Skills on Resume: 

• Policy Development (Hard Skills)
• Penetration Testing (Hard Skills)
• Risk Management (Hard Skills)
• IT Compliance (Hard Skills)
• Incident Support (Hard Skills)
• Third-Party Management (Soft Skills)
• Business Continuity (Soft Skills)
• Resilience (Soft Skills)

Job Summary: 

• Manage computer networks for security issues
• Investigate security breaches and other cybersecurity incidents, including applications, websites and cloud
• Manage security measures and operate software to protect systems and information infrastructure, including firewalls and data encryption programs
• Work with IT development teams to identify and resolve application and website security gaps
• Work with security vendors to review security logs, tests and uncover network vulnerabilities
• Work with IT and Security teams to detect vulnerabilities to maintain a high-security standard
• Manage application security and cloud access 
• Develop a Security program and maintain company-wide best practices for IT security

Skills on Resume: 

• Network Security (Hard Skills)
• Incident Investigation (Hard Skills)
• Data Encryption (Hard Skills)
• Vulnerability Detection (Hard Skills)
• Cloud Security (Hard Skills)
• Collaboration (Soft Skills)
• Vendor Management (Soft Skills)
• Program Development (Soft Skills)

Job Summary: 

• Review penetration testing, vulnerability scanning and work with IT Infrastructure and Development teams to resolve identified gaps
• Manage security software and understand information security management
• Research security enhancements and make recommendations to IT management
• Conduct cybersecurity assessments and technological security reviews on securing software development and provide advice and consultation
• Proactively review and evaluate security configurations and settings for websites, servers, desktops and networks
• Work with IT and Business to document the resolution of identified security weaknesses and recommend established improvement solutions
• Monitor emerging security threats, evaluate and recommend a mitigation strategy
• Maintain necessary documentation to support security strategy by outlining the requirements and benefits of specific security tools and/or solutions
• Provide timely reports on project and task progress and centrally track incoming and existing issues in real-time

Skills on Resume: 

• Penetration Testing (Hard Skills)
• Vulnerability Scanning (Hard Skills)
• Cybersecurity Assessment (Hard Skills)
• Security Configuration (Hard Skills)
• Threat Monitoring (Hard Skills)
• Documentation (Soft Skills)
• Collaboration (Soft Skills)
• Reporting (Soft Skills)

Job Summary: 

• Follow leads and hunches to identify cybersecurity events and possible incidents
• Deep dive into the Security Information and Event Management platform to identify security threats and offer tuning recommendations to security engineers
• Provide log analysis to support wider security operation services such as troubleshooting and tuning of the SIEM tools
• Develop use cases, rulesets, and content definitions based on numerous intelligence and detection products
• Design, develop and review complex SIEM content based on endpoint events, network events, and threat intelligence
• Develop technical and process documentation to improve the process
• Communicate highly technical information to non-technical users
• Helping the security team ensure customer confidence by securing the financial world
• Work closely with threat intelligence and investigation analysts to implement detection for the knowledge and information shared about current and changing threat landscapes
• Perform analysis and correlation of ‘events of interest’ to identify and detect potential security incidents
• Efficiently and effectively identify potential incidents and escalate according to defined processes and procedures
• Support post-incident report creation and effectively document changes for SIEM improvement
• Manage a content library on multiple platforms for hundreds of unique customer environments
• Follow change/release management procedures applicable to production environments
• Stay up-to-date on IT security news, trends, threat actors, and the threat landscape

Skills on Resume: 

• Threat Detection (Hard Skills)
• SIEM Management (Hard Skills)
• Log Analysis (Hard Skills)
• Use Case Development (Hard Skills)
• Incident Analysis (Hard Skills)
• Technical Documentation (Soft Skills)
• Cross-Team Collaboration (Soft Skills)
• Security Communication (Soft Skills)

Job Summary: 

• Participate in a global collaborative team
• Provide break/fix support for security technologies
• Support Active Directory, SSO, and MFA infrastructure and configurations
• Process DNS and DHCP Requests
• Process Certificate Requests
• Support the Network Access Control team during pre-staging and cutovers
• Monitoring and responding to automated alerts and metrics
• Manage reporting of service level metrics
• Serve in an on-call rotation, including evening and weekend hours

Skills on Resume: 

• Security Support (Hard Skills)
• Active Directory (Hard Skills)
• Network Access (Hard Skills)
• Certificate Management (Hard Skills)
• Alert Monitoring (Hard Skills)
• Team Collaboration (Soft Skills)
• Service Reporting (Soft Skills)
• On-Call Support (Soft Skills)

Job Summary: 

• Lead audits of IT systems and/or related operational process controls against established Merkle criteria, including analysis and reporting
• Working knowledge of HIPAA controls
• Effectively engage with external client audit staff to minimize high-risk findings and exposure to Merkle by using sound judgment and discretion
• Execute dentsu IT processes (e.g., incident management, problem management, change management, emergency response and physical/logical security)
• Assist with the development and lifecycle of policy, procedures, and processes
• Assist with incident management and disaster recovery operations
• Show an appropriate sense of urgency to respond to requests and queries
• Stay current with existing and emerging IT Risk management standards and practices
• Ensure that controls designed to ensure the security and availability of the Merkle and client information technology environment are adhered to
• Assist with Platform BC/DR testing facilitation and maintenance projects
• Demonstrate support for the Merkle IT Guiding Principles

Skills on Resume: 

• IT Auditing (Hard Skills)
• Risk Management (Hard Skills)
• HIPAA Compliance (Hard Skills)
• Incident Management (Hard Skills)
• Disaster Recovery (Hard Skills)
• Client Engagement (Soft Skills)
• Process Improvement (Soft Skills)
• Urgency Awareness (Soft Skills)