Information Security Specialist responsible for protecting systems and data at Ituran. Collaborating with teams and ensuring compliance with security measures and regulations.
About the role
- Offensive Security Specialist at Bupa testing and analyzing security controls across IT infrastructures. Collaborating with teams and utilizing threat intelligence to enhance security posture.
Responsibilities
- Reviewing and analysing findings from multiple data sources to assess their impact and determine remediation priorities.
- Developing remediation plans for high-priority vulnerabilities, using your offensive security expertise to identify potential attack paths.
- Collaborating across teams to disrupt those paths effectively, leveraging both your technical knowledge and that of others.
- Influencing stakeholders including technology owners and remediation teams to commit to and implement remediation strategies.
- Perform risk analysis on test data to ensure the most critical issues are addressed first, aligning with frameworks like MITRE ATT&CK and the Unified Kill Chain.
- Use threat intelligence to guide future assessments, ensuring testing is relevant to current controls and risks.
- Utilise BAS platforms and engage in continuous self-learning through provided resources to maintain your credibility and expertise.
- Partner with internal and external SMEs across Security Operations, Engineering, Threat Intelligence, and Vulnerability Management to design effective solutions.
- Mentor and guide colleagues, sharing knowledge and influencing others to resolve identified weaknesses.
- Lead small projects, ensuring timely and accurate implementation of solutions, and design unbiased methods to validate their effectiveness.
- Challenge and improve existing processes, contributing to documentation and reporting using tools like Kibana, Lucene, and Python.
- Communicate technical findings clearly to Risk teams and other stakeholders, ensuring risks are well understood and documented.
Requirements
- Experience within any of the following IT Security disciplines: Security Operations, Red teaming, Penetration Testing, Security Engineering.
- Along with expert knowledge of various enterprise technologies/infrastructure including network architectures, operating systems and security controls.
- Confident in their technical expertise and can present themselves as a technically competent SME.
- Exposure to Security Monitoring and Security Control technologies
- Exposure to Threat Intelligence sources
- Good experience of typical enterprise security services including but not limited to: Threat Intelligence Penetration testing Anti-malware Email/SPAM management Authentication mechanisms SIEM WAF Firewalls Proxy technologies IDS/IPS DLP
- Has a track record of technical delivery within a fast paced & pressured environment.
- Engages key stakeholders well
- Effective communicator 'not afraid to ask' mentality.
Benefits
- 25 days holiday, increasing through length of service, with option to buy or sell
- Bupa health insurance as a benefit in kind
- An enhanced pension plan and life insurance
- Onsite gyms or local discounts where no onsite gym available
- Various other benefits and online discounts
Job title
Job type
Experience level
Salary
Degree requirement
Tech skills
Location requirements
Senior Cloud & Information Security Engineer responsible for EC Markets' technical security posture. Designing and operating secure systems while ensuring regulatory compliance and cloud infrastructure security.
Product Security Engineer focusing on ensuring software resilience against attacks during development phases. Collaborating with DevOps and Engineering teams to enhance security protocols.
IT audit specialist responsible for executing technology and cybersecurity audits at an international bank in Zurich. Collaborating with top management to enhance internal controls and efficiencies.
IT Systemadministrator focusing on Sophos Security at bauXpert GmbH. Responsible for IT infrastructure management and support tasks in a hybrid environment.
Cyber Security Specialist designing and implementing security controls for Squarcle clients. Supporting compliance with regulations and best practices in a digital environment.
Head of Security at Street Group managing organizational security and working with IT and Engineering teams. Leading security posture and compliance while mitigating emerging threat vectors.
Cybersecurity Data Analyst Internship at Schneider Electric. Contributing to real - world projects in a dynamic team environment.
Security Consultant providing technical leadership in electronic security systems engineering for complex built environments. Leading projects through all lifecycle stages while engaging with clients and contractors.
Senior Application Security Engineer at Enova Consulting in Genève, specializing in web application security and WAF solutions for critical projects.