Opdrachtgever ING
General knowledge - required:
• Sound understanding and appreciation for control vulnerabilities within application, server, middleware and database architectures
Technical knowledge - required:
• Degree or masters in an IT or computer science subject or comparative experience
• CISSP, CISA, ISSEP or Security+ qualification advantageous, but not necessary
• At least 10 to 15 years experience in IT, preferably within security field mandatory
• Demonstrated competence in a variety of IT concepts, practices and procedures
• Sound understanding and appreciation for control vulnerabilities within application, server, middleware and database architectures
• Experience in a banking environment advantageous
• Experience with Sarbanes Oxley and Basel II, or regulatory requirements on systems
• Experience with NetIQ monitoring tools highly desirable
Social skills - required:
Excellent intepersonal and communication skills, with good negotiation and persuasion skills and the ability to coach others on the concepts of security monitoring
Social skills - wanted:
Excellent intepersonal and communication skills, with good negotiation and persuasion skills and the ability to coach others on the concepts of security monitoring
Language - required:
English necessary, Dutch an advantage
Language - wanted:
English necessary, Dutch an advantage
Name of the project:
Ops and IT banking are rolling out NetIQ security monitoring across business critical infrastructure and applications. A security analyst consultant is required to support the process of impact assessment and requirements analysis and to ensure quality of monitoring rule sets and procedures delivered by the vendor.
Description tasks employee (if possible including performance targets):
• Liaise with the risk managers, application owners, technical owners in a consultative manner to guide the interpretation of security monitoring of privilege activities specific to a given asset: application, database, middleware, operating system, infrastructure, so that monitoring requirements can be clearly defined by the client
• Act as one of the QA approvers for the security monitoring requirements of an asset, to give assurance that they are complete in terms of add/ change/ deletes and other privilege user and group activities
• Input as required for the QA sign off of rule sets developed to monitor privilege activities, to ensure rules are as defined
• Support pre production testing of rules sets with live production data, to interpret whether adjustments are required • Author and deliver presentations to large groups to explain the concepts of security monitoring policy
• Contribute to documentation of security monitoring policies and creation of white papers as required
Remarks / Comments:
• Willingness to travel as the job requires
Bijzonderheden
Begindatum 01-09-2008
Einddatum 31-12-2008
Inzet% 100
Bij deze opdrachtgever is een afwijkende aanbiedingsprocedure van toepassing. Met de aanbieding dient een digitaal kopie paspoort of ID-bewijs (JPEG of .pdf) aangeleverd te worden alsmede het bijgeleverde screening template te worden ingevuld en bijgevoegd.
Graag ontvangen wij cv’s van geschikte kandidaten onder vermelding van tarief, beschikbaarheid en reeds geplande afwezigheid (verlof / vakantie). Voormalige ING medewerkers die met een afvloeiingsregeling zijn vertrokken bij ING mogen niet worden aangeboden!. Voor aanvullende vragen kun je altijd contact opnemen.
Graag in max. 2 zinnen motiveren waarom U de juiste match bent op deze aanvraag.
cforms contact form by delicious:days
Tags: Architect Overig, CISA, CISSP, Consultant, database, ISSEP, Security
