Role: Senior Security Management & System Administrator

Location: VASS STRASBOURG

А global digital transformation company with a team of more than 4,900 global players in 26 countries – in Europe, America and Asia, working together to put organizations at the forefront of innovation by bringing together talent, knowledge and technology.

Our approach is based on conscious technology, through which we create positive environments and meaningful opportunities, always in our own way, making the complex simple.

VASS BeNeLux, in partnership with the euLisa, is currently seeking an Expert Senior Security Management & System Administrator to work our client in Strasbourg.

The role:

Job Description

• Support the Agency's Information Security Officers in the management of information security and business continuity across organizational business processes and information systems;
• Develop security controls in the context of the agency's information security framework;
• Perform risk assessments;
• Develop Information Security Management System (ISMS) procedures;
• Develop conceptual, logical, and physical security models as appropriate;
• Draft security policies, standards, procedures, and guidelines in accordance with ISO27001;
• Develop security plans and documentation (e.g., risk treatment plans, security test plans);
• Develop business continuity and disaster recovery plans;
• Perform security assessments and audits;
• Perform ISMS control audits;
• Perform ISMS gap assessments;
• Design security controls in accordance with agency information security policies and standards;
• Provide assistance in the formal accreditation process for information systems handling EU sensitive and classified information;
• Support IT systems administration tasks while simultaneously auditing systems to ensure compliance with security policies;
• Implement and follow up with security policies to enhance the agency's information security framework.
  
  
  
  

You have:

Job Requirements

• Minimum 4 years of relevant education (master or equivalent) after the secondary school.
• Minimum 6 years of IT professional experience, of which
• Minimum 4 years of relevant professional experience in Information Security Management.
  
  
  
  

Qualifications

• ISO27001 implementation, management and audit;
• Relevant standards and good practice in information security management;
• Risk management;
• Governance, Risk & Compliance (GRC) practices and controls;
• ISO27001 security control audits and assessments;
• Developing security policies, standards and guidelines in accordance with ISO27001 and EU security policies and standards;
• Design, implementation and assessments of good practice security control frameworks such as SANS Top 20 Critical Controls, OWASP Application
  
  
  
  

Mandatory certificate:

• Certified Information Systems Security Professional (CISSP);
  
  
  
  

Preferred certificates:

• Secure development processes (Security and Privacy design);
• Implementation of EU data protection principles in information system design and processes.
• Certified Information Security Manager (CISM);
• Certified Information Systems Auditor (CISA);
• ITIL/ITIL V3;
• BSI ISO27001 Lead Auditor Qualification.
  
  
  
  

Security Clearance will be performed.

If you want to join a dynamic company where technological challenges will be found in your day to day we are waiting for you in the great VASS team.

And we encourage you to be the best version of yourself: Transformative, Creative, Honest, Vibrant!

At VASS we take action every day to achieve a favourable environment that facilitates and promotes equal opportunities, non-discrimination, diversity and inclusion of all people. We select our talent based on business needs, skills and merits. 🌟