JOB OPENINGInformation Security Manager
We believe in people and their power to achieve great things!
At Bright Consulting, we have a real passion to help enterprises transform their IT. We have established presence in Europe delivering successful IT Transformation programs in CEE, Switzerland and Sweden. Our customers are some of the most innovative and forward-thinking global enterprises looking to manage IT complexity and simplify their IT & business operations.
Bright’s ITSM & Automation Consultants develop solutions for some of the biggest and leading multinational corporations from many industries such as IT, telecom, pharma, banking, insurance, defence, biotechnology and agriculture. We use our vast technological know-how to deliver solutions, which embrace design, implementation and automation of IT and various business processes (facility, logistics, procurement, security, vendor management, etc).
Information Security Manager
The Information Security Manager (InfoSec Manager) is responsible for providing essential guidance to customer organizations in their security-related initiatives. Ranging from an initial assessment and discovery, up to complete Security Operation Center (SOC) implementations, the InfoSec Manager will lead engineers and subject matter experts (SMEs) to establish the right government practices and minimize risk while keep the customer’s environment secure. The person with such role should be someone with experience in protecting an organization’s IT environment (computers, networks and data) against any security breaches, both internal and external.
Conduct risk analysis & suggest best-practice solutions to mitigate
Assess current security posture and propose changes in security policies, standards and procedures
Challenge the status quo and question current approaches where appropriate
Propose and implement compliance metrics to align with regulatory standards
Lead project teams in SOC/SIEM tool implementations; Design & troubleshoot Security Incident Management processes
Conduct security-related training sessions with customers, explaining security risks and demonstrating good practices.
2 years of relevant experience in the IT security domain
Any EC-Council, ISACA, (ISC)2 or Offensive Security certification
Bachelor’s or Master’s degree in Computer Science or similar
Experience with regulatory/compliance frameworks, such as PCI, SOX, CIS, ISO, etc.
Excellent analytical and problem-solving abilities to identify security risks and propose solutions to fix them
Ability to conduct effective communication (face-to-face, telephone and written) in order to build understanding and awareness of security issues throughout the organization
Proven leadership skills in collaboration with other IT professionals
Security concepts related to DNS, routing, authentication, VPN, proxy services and DDOS mitigation technologies
Network security architecture development and definition
Previous experience with Splunk Enterprise Security, Splunk UBA or similar technology (QRadar, ArcSight, AlienVault)
Previous experience with Splunk or similar technology (Elastic, GrayLog, DataDog)
What we offer
Opportunity to make a difference in a rapidly growing company;
A welcoming and inclusive environment;
Excellent remuneration and benefits;
Access to cutting-edge technologies
Health-conscious and active life style culture
Extensive learning opportunities, certification programs and career development
Opportunity to collaborate with some of the most knowledgeable and talented experts in the business
Working for Bright
We are a dynamic and rapidly growing IT Management consultancy with a strong sense of dedication to our customers.
We believe in real partnership with our customers. Together we bridge gaps, align teams, navigate organizational change, raise the maturity and capability of their organizations to do more, become more competitive and ready for the challenges of the future.
We take ownership of customer’s pains and goals, and commit to achieve tangible realistic results.
We are honest and proactive. Our customers appreciate our guts to say “no” to a request if it is not aligned with the end goal.
We don’t disconnect when the project is over – will keep looking for further improvements to reach the next level.