- REQUIREMENT TEMPLATE - Cybersecurity Risk Assurance Consultant
| |
| No. of positions | 1 | |
| Prepared by | | |
| Account Name | Proximus - GCC - ADA | |
| Service Line | | |
| Must have skills - 2 skills which are non-negotiable | - To perform a complete cyber security risk assessment of new projects or changes to existing applications, infrastructure components or services, following the Secure-By-Design process and using our GRC tool
- To ensure that the new projects (or changes to existing systems and platforms) are compliant with Proximus security policies, international standards, European or Belgian laws and regulations that Proximus has to comply with
- To identify and document all the security risks raised by the new technologies introduced into the company in the IT, Telecommunications and Internet landscapes and propose the relevant mitigating measures based on existing risk frameworks.
- To provide security requirements to be included in Request For Quotation and Request For Proposal's and to evaluate vendor responses.
- To ensure supply chain security by conducting a complete and cycling third-party security risk assessment
- To support the business project stakeholders, during the implementation of the provided security requirements.
- Having industry recognized cybersecurity certification(s): CISSP or CISM are highly considered
| |
| Desirable skills - 1 skill which is nice to have | - Able to work in an environment which is continuously changing using an Agile development style.
- Background network engineering , or web engineering is certainly a plus.
| |
| Infosys role | | |
| Desired experience range | 6-8 Years | |
| Location(s) where this position can work out of | Proximus - GCC - Bangalore | |
| Does this position require working from client office all or some days in the week? If yes pls provide details | Yes. Person should work only from Client location which is at Proximus-GCC-BLR | |
| Is remote working allowed | | |
| Any additional things to be checked
| | |
Responsibilities and JD in brief along with additional criteria to be considered (if any):
- To perform a complete cyber security risk assessment of new projects or changes to existing applications, infrastructure components or services, following the Secure-By-Design process and using our GRC tool
- To ensure that the new projects (or changes to existing systems and platforms) are compliant with Proximus security policies, international standards, European or Belgian laws and regulations that Proximus has to comply with
- To identify and document all the security risks raised by the new technologies introduced into the company in the IT, Telecommunications and Internet landscapes and propose the relevant mitigating measures based on existing risk frameworks.
- To provide security requirements to be included in Request For Quotation and Request For Proposal's and to evaluate vendor responses.
- To ensure supply chain security by conducting a complete and cycling third-party security risk assessment
- To support the business project stakeholders, during the implementation of the provided security requirements.
- Bachelor's in IT and/or cyber security or equivalent combination of education and experience.
- Having industry recognized cybersecurity certification(s): CISSP or CISM are highly considered
- Very good interpersonal skills, mixing collaboration & communication skills, open minded, constructive assertiveness.
- Eager to learn. Very curious. Wants to develop himself/herself continuously.
- Able to work in an environment which is continuously changing using an Agile development style.
- Background network engineering , or web engineering is certainly a plus.
- Have some knowledge in recent telecommunication technologies (5G, IOT, ...) .
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
