Information Security Officer

Short Company Description

La Garanti BBVA Romania am creat un climat care inspira colaborarea si comunicarea. Am construit astfel o echipa unita si energica, care pune intotdeauna clientul pe primul loc. Sustinem aspiratiile colegilor nostri si ii incurajam sa se perfectioneze continuu si sa isi urmeze pasiunile. Ca echipa, ne preocupa cresterea eficientei operationale si imbunatatirea constanta a serviciilor oferite clientilor.

Requirements

We are looking for a person who

• Is experienced in "eye on the glass" and information security operations
• Has a track record in managing cybersecyrity tools, techniques and technologies
• Has been involved in cyber security incident response and digital forensics;
• Is knowledgeable of international information security standards and national specific regulations;
• Has the ability to adapt speaking to a non-technical listener and adequately explain IS concepts;
• Is a good team player and fast learner;
• Speaks English;
• Has great analytical and synthetic capabilities, able to run and modifie data queries;
• Has earned at least one industry certification and has at least 2 years of experience in the filed
• Owns an university graduate in computer science, mathematics, telecomm or similar
  
  

Responsibilities

Day to day responsibilities include:

• Resolves information security incidents and ensures all system requests and incidents are recorded, fixed and documented;
• Overviews routine activities such as monitoring of anti-malware and intrusion detection systems, log management application, spam/phishing filter, automated alerts and notifications;
• Performs forensics and post-incident investigation;
• Develops, implements and monitors security operations, procedures and guidelines in compliance with the security regulations and standards;
• Provides expert advisory to IT management in the development, implementation and maintenance of an information security infrastructure;
• Monitors potential threats and vulnerabilities, learns about counter-offensive methods and develops plans to minimize risks on the IT infrastructure;
• Promotes the use of Information Security Policies and provides user awareness;
• Ensures that the security policies are enforced and performs periodic tests using adequate techniques;
• Assesses and reviews the mandatory security requirements for contractors, third parties and their systems;
• Performs continuous self-education and is connected to the threat intelligence and peer forums.