Cyber Security - ICT Security Risk OfficerFull time | Test Triangle | Ireland
Posted On 14/01/2025
Job InformationWork Experience: 7+ years
IT Services
City: Dublin 2
State/Province: Dublin
Postal Code: D02
Job DescriptionJob Title: Cyber Security- Cyber Security Engineer
Location: Dublin 2, Full time role.
Typical arrangement is 1-2 days in office attendance per week + onsite as required.
Contract / Permanent: FTC 12 Months, with further extension.
Start date: On or before 24/02/2025.
Role: Our client is looking to establish a cyber security posture management team including the role of Cybersecurity Risk Officer.
The Risk Officer role deals with trying to predict and manage Cybersecurity risk within the organisation.
The role is demanding and involves assessing the threats posed to Revenue from various sources and translating that into a model that can be used to efficiently direct resources and expenditure for maximum return.
ResponsibilitiesGenerate and maintain a threat actor assessment model.Identify Threat Actors and motivations to use as a template for risk profile assessment.Apply these profiles to the risk model to provide a more complete risk assessment of identified threats.Generate, maintain and assess Cybersecurity Incident Response plans based on threat scenarios.Detect, assess and verify vulnerabilities in Revenue systems.Build and maintain a risk profile of Revenue systems to enable accurate risk assessment.SIEM management and orchestration including use case generation and vendor collaboration.Revenue Risk Posture management (Risk and Vulnerability management).The Risk Officer must build an in-depth knowledge of Revenue systems and technologies in order to correctly model the environment.
A strong technical understanding and applicable hands-on experience would be seen as an advantage.
Experience Level Required7 years of Cybersecurity experience with demonstrable focus on Risk assessment/Risk management.A Professional qualification in a framework or standard that incorporates cybersecurity risk assessment.A penetration testing qualification from a recognised vendor outside of college modules that form part of a larger qualification.Key DeliverablesCyber Security Risk management by engaging with stakeholders through whichever medium is most appropriate.Design and management of a working vulnerability management process that improves communication of risks and makes identification of actions easier.Delivery of penetration testing on internal systems and applications as required.Periodic reporting on Cyber Security Posture within Revenue.Develop and maintain a cybersecurity risk model that represents Revenue and its systems, services, and data.RequirementsDemonstrable experience leading or contributing significantly to a vulnerability management process in a Public Sector, FinTech or Public Services organisation.Experience of penetration testing involving any or all of: Web application (Java, PHP, Angular)Infrastructure (network, windows, linux, database)Experience of the application of the MITRE Att&ck framework.Attack simulation and risk modelling.Report writing and delivery of results.Working as part of a team to deliver cross-discipline projects.Experience of team leadership in a security environment.
#J-18808-Ljbffr