Job Detail

IT > IT westpac-small

Information Security Officer

Location: Western Europe > The Netherlands > Amsterdam
Work Type: Full Time

About the role/team

At our company, data security and privacy are taken very seriously. We are committed to protecting and securing all our customer and employee financial and personal data. We are ISO9001, ISO27001 and PCI DSS certified. You will have the complete support and commitment from the board for all security-related matters.

Our multi-national Information Security team is searching for an InfoSec Officer. As the InfoSec Officer you have the vital task of protecting the networks and computer systems of our company from any security threats or attacks. Your tasks will include designing, creating and operating secure systems; maintaining and improving operational data centers and our cloud environment; analyzing and responding to security incidents. You will assist the organization in understanding advanced cyber threats and helping to create strategies to protect those environments. These strategies include defending, monitoring and protecting sensitive data and systems from intrusions.

You will get InfoSec questions from all areas of business and therefore need to be approachable and a good communicator. Alongside our team, you will need to develop training programmes and continuously grow security awareness within the organization.

Your responsibilities

  • Execute our PCI DSS and ISO27001 activity planner and daily, weekly, monthly, quarterly and annual tasks
  • PCI DSS Monthly scans for the NL & UK and remediation action
  • Check security advisories and alerts and keep operations and infrastructure up to date
  • Book penetration tests for the NL and UK and action remediation work
  • Provide security input for change management projects
  • Assist with the implementation of security-related measures and standards within the Security and Compliance team
  • Malware, intrusion detection logging and alerts
  • All security-related logging and monitoring of networks
  • Assisting with coordinating external audits such as evidence collection, time management of stakeholders and communication with third-party assessors, etc.
  • Assisting in risk assessments
  • Provide employee education/awareness training, answer queries and ad hoc support in Information Security

About you

  • Must be a People person!
  • Able to prioritise, manage and track multiple activities and tasks;
  • Excellent communication skills and the ability to articulate technical concepts in a straightforward way to non-technical staff
  • Self-motivated – personal drive and enthusiasm to continually improve and provide the best in all situations and able to readily embrace change.
  • Enthusiastic approach and “can-do” attitude;
  • Resilient, copes well under heavy workloads;
  • Flexible approach to work;
  • Problem solving and resolution

Essential Attributes

  • Knowledge of in-depth network infrastructure and the ability to analyse and understand cybersecurity threats and vulnerabilities
  • Ability to analyse and understand cybersecurity threats and vulnerabilities. Be able to communicate and alert other technical and non-technical departments.
  • Knowledge of network infrastructure and basic levels of the application layer. Good communication of scheduling and remediation of findings.
  • Knowledge of cybersecurity infrastructure with the ability to communicate with other teams
  • Understanding of logging and monitoring systems (SIEM) with the ability to analyse alerts and communicate them to infrastructure;
  • Understanding of authentication systems and databases and the ability to communicate to technical terms to a non-technical audience.
  • Ability to build strong relationships with infrastructure and software development teams
  • Work collaboratively with the wider information security team and other groups to ensure that all infrastructure and information security controls meet internal and external compliance requirements.
  • Experience/knowledge of PCI-DSS & ISO 27001 Framework

Optional Attributes

  • Certified or in the progress of becoming CISSP certified
  • CEH certified
Reference Number: 9292
Profession:  IT > IT
Company:Payments and Cards Network

Interested in this job?