Our GIS Security Department is looking for a CyberSecurity Advisor to be based in Portugal, to perform the following, in consistency with our company strategy, commitments and goals and based on directions and arbitrations provided by Group CISO.
Sobre o nosso cliente
New trends and expectations are reshaping the automotive industry. Inspired by the exciting new challenges associated with this revolution, Company anticipates the future of mobility developing cutting-edge solutions for smart life on board and sustainable mobility.
If you're willing to contribute and create value for tomorrow's cleaner and smarter mobility, Company is the place to be.
The main objective is to ensure an effective collaboration between our businesses and the Group CyberSecurity department.
As such, the CyberSecurity Advisor is responsible for :
Establishing and keeping the necessary connections with all key business stakeholders
Capturing all context information and all business needs (who are the users, what are the project deadlines and sponsors, who are the administrators, what are the applicable regulations, etc.)
Translating this information into technical inputs (what are the networks and systems involved, what is the level of criticity of the data handled, what are the applicable Recovery Time and Point Objectives, etc.)
Performing an appropriate risk analysis (what are the most important threats that we can foresee based on the information above)
Defining the mandatory CyberSecurity requirements (e.g. which authentication, filtering, encryption, content inspection, hardening, logging and monitoring measures are necessary) based on such risk analysis
Ensuring a proper handover to the CyberSecurity Projects and Service Delivery Manager in order to select the most appropriate technology, design the best architecture along with adequate technical configuration
Defining the necessary controls (e.g. intrusion tests, audits, etc.) and the proper organization to ensure that cybersecurity is managed in an efficient way
Providing the necessary inputs to the Service Delivery Manager for him to coordinate the kick-off meeting for every new project
Requesting the necessary changes in our CyberSecurity policies to the CyberSecurity Office
Advise the Communication team on the necessary awareness and training programs, based on the discussions held with the businesses
Requesting the necessary audits to the Risk & Compliance team
Reporting monthly the business requests under evaluation, requests confirmed and moving to project phase and requests discarded
Education and experience
Minimum 3 years of increasing / successful responsibility / experience on at least half of the above duties
Experienced in IT projects and operations
Knowledge of both theoretical and practical aspects of CyberSecurity
Critical thinking and problem solving skills
Planning, organizing, structuring
Communication skills (written and verbal)
Influencing, convincing, leading
English : fluent (mandatory)
French and / or german is a plus
Conditions above to the market