Ethical Hacker / Information Security Manager (m/f) in Group IT Risk & Security
Emerald Group Ltd
Munich, Germany
vor 3 Tg.
  • Category : Cyber Security
  • Pay Range : Up to €100k
  • Key Responsibilities :

  • Continuously improve and maintain practical and value-adding global information security policies and practices
  • Continuously improve the collaboration of the ethical white-hat hacker community within the participating Operation Entities
  • Build a schedule and conduct annual Red Team exercises
  • Conduct and support internal review of effectiveness and efficiency of security controls (enforce information security controls)
  • Conduct information security violation analysis (non-compliance to policies) and trigger internal auditing work
  • Provide Subject Matter Expertise in IT Risk, Information Security and penetration testing in Business and IT projects and support the identification and implementation of the required security standards and controls
  • Support setup and deployment of Information Security governance and processes in the company
  • Perform Security assessments as table top exercises, also on hands on ethical hacking scale, including reporting and communication and follow up with risks identified and support identification of mitigation measures
  • Implement and reporting for security and performance IT EGRC toolset
  • Actively involve and engage with Organizational Entities and Shared Service Centers regarding the company’s security
  • Support and enforce international Information Security community exchange, building up and fostering a Red-Team / Blue-Team community
  • Lead and run projects aiming to support the implementation of new security and risk assessment approaches and new security processes and tools
  • Other Skills :

  • Successful track record in working for large and diverse international organizations
  • Fluent English mandatory; a good command in German a clear plus
  • Understanding of best practices (ISO27XXX, ITIL, COBIT, etc.) and information technology security
  • High quality analytical skills, management experience
  • Excellent Interpersonal skills
  • Good track record in running and managing IT Projects in large multinational environments
  • Ability to establish relationships across all business areas and act in a consultative manner to identify the security requirements applicable to each business area and to intertwine security needs with the goals and objectives of the organization
  • Ability to interact with a wide range of internal staff members and external professionals, including regulators, consultants, auditors, legal counsel and others
  • Degree in Computer Science, Physics, Mathematics, Business Information Systems, Economics or related field is required.
  • Master’s degree required

  • Professional certifications in Project Management (PMI, PMP, et. al.),Process Management (e.g. ITIL) as well as Information Security (e.g. CISSP, CISM)
  • Technological IT security background either network or operating system or application level
  • Experienced in Hacking or penetration testing using standard tools and hacking platforms like Metasploit, Kali-Linux
  • Experience in social engineering with respect to information security
  • Knowledge of current main IT Security technologies and architecture (firewalls, Virtual Private Networks, vulnerability / penetration testing and other security devices)
  • 6-10 years of significant, professional experience in information technology and a high level of understanding of contemporary hardware and software architectures
  • Degree in Computer Science, Physics, Mathematics, Business Information Systems, Economics or related field is required.
  • Master’s degree required

  • Professional certifications in Project Management (PMI, PMP, et. al.),Process Management (e.g. ITIL) as well as Information Security (e.g. CISSP, CISM)
  • Technological IT security background either network or operating system or application level
  • Experienced in Hacking or penetration testing using standard tools and hacking platforms like Metasploit, Kali-Linux
  • Experience in social engineering with respect to information security
  • Knowledge of current main IT Security technologies and architecture (firewalls, Virtual Private Networks, vulnerability / penetration testing and other security devices)
  • 6-10 years of significant, professional experience in information technology and a high level of understanding of contemporary hardware and software architectures
  • Bewerben
    Zu Favoriten hinzufügen
    Aus Favoriten entfernen
    Bewerben
    Meine Email
    Wenn Sie auf "Fortfahren" klicken, stimmen Sie zu, dass neuvoo Ihre persönliche Daten, die Sie in diesem Formular angegeben haben, sammelt und verarbeitet, um ein Neuvoo-Konto zu erstellen und Sie gemäß unserer Datenschutzerklärung per Email zu benachrichtigen. Sie können Ihre Zustimmung jederzeit widerrufen, indem Sie diesen Schritten folgen.
    Fortfahren
    Bewerbungsbogen