Cyber Security Analyst

3 X Cyber Security Analyst

• Contract: 12 Month Extendable
• Location: Warsaw (1 Day per week onsite)
• Language: English and Polish

I am currently assisting a Multi-National Telecommunications service providers in the search for 3 Cyber Security Analysts to work with them on a long term external contract.

The Main responsibility of this position, is to perform information security assessments of third-party service providers' enterprise using risk management framework and cybersecurity assessment methods for vendors of varying sizes and complexities.

Roles and Responsibilities:

• To perform information security assessments of third-party service providers' enterprise using risk management framework and cybersecurity assessment methods for vendors of varying sizes and complexities
• Document assessment results consistent with Issue Management and Enterprise Risk Management standards
• Provide subject matter expertise in the Third-Party information security program and provide timely recommendations to identified problems
• Contribute with the implementation of the global ISMS (based on ISO27001) over the company
• Evaluate the compliance status of processes and technology implementations and plan actions to align to the security framework.
• Identify risk related to information security in the technical environment, the relationships with third parties or any component of the company's context.
• Analyze business requirements regarding information security and evaluate their accuracy. Follow up the actions needed to comply with those requirements.
• Solve low complex issues independently with minimum supervision and escalate more complex issues to accurate staff.
• Perform routine activities to ensure compliance with security frameworks and legislation.
• Investigate on technologies that could improve the security baseline and the compliance (e.g. DLP, end-point protection, network security, security and vulnerabilities assessment).

Skills and Qualifications:

• Understanding of Cyber Security within Windows/Linux systems
• Strong understanding of Cyber Security Topics
• Understanding of ISMS (Based on ISO27001)
• Understanding of technical and administrative controls in the different Security areas: networking, operations, access management, SSDLC, cloud security, end-point protection, physical security, third party risk assessment, governance security and legal compliance.
• Strong experience with doing Cyber Threat Analysis