Banka Amerikane e Investimeve - ABI Bank
04.09.2013, 11:49
Ref Job number: # 001 ISO #
Job Title: Information Security Specialist
Location: Tirana
Division: Information Security Sector
Closing Date: 18/09/2013
Credit Agricole Albania Bank S.A., Crédit Agricole Group, a market leader in universal customer-focused banking in France and one of the largest banks in Europe seeks to serve the real economy by supporting its clients’ projects in all areas of retail banking and associated specialized business lines.
Emphasizing its values and its commitment, we are the bank of common sense. It puts the satisfaction and the interests of its 54 million customers, 160,000 employees, 1.2 million shareholders and 6.5 million mutual shareholders, at the heart of its activities.
We are seeking to recruit: Information Security Sector Specialist
Direct Reports to: Head of Information Security Sector
Job Purpose: The Information Security Sector Specialist is responsible for the control process, monitoring process, change management process, risk assessment for different projects, security configuration reviews (IPS, firewall, domain, vmware, backup), Access right process, Risk Assessment methodology, Security Trainings for the employees, BCP support, Gap analysis, Patch management, vulnerability mitigation process, penetration tests, incident follow up process, information classification project, different daily tasks
Main Responsibilities:
Network security
Perimeter protection – define the measures and baselines
Fire Wall protection (internal and external), rules analysis, approval, and continuous monitoring
Intrusion Prevention protection (internal and external), rules analysis, approval, and continuous monitoring
Device protection following secure configuration principles
Analyse the new technologies in network security (encryption, layer 2 protection, IPS IDS etc)
Create and execute the control plan to insure the required level of security
Continuous Monitoring of the entity network
Systems Security
Define and concept the baseline security on all systems
Check the Log Management Systems, for log retention, reviews, and analysis
Review and analysis the needs for security protection on different systems (domain security etc)
Ensure proper vulnerability management process
Ensure proper Penetration tests process
Ensure proper Patch management process
Review the backup plan on systems and DR measures
Ensure proper Endpoint (Workstation) protection
Propose and Control implementation of proper security measures for workstations in the Bank
Perform regulatory controls based on the Year control plan
Develop and maintains procedures based on the Information Security Policies
Ensures and monitors compliance with Information Security Policy, procedures and guidelines.
Undertakes a continuous Risk Assessment process over bank network and other systems
Review and analyses the data leak prevention/protection mechanisms
Ensure if proper controls are in place for protection of mobile devices (laptop encryption etc)
Ensure that the incident management process is handled properly over the network and system level.
Investigate for security breaches.
Insure proper implementation of local and group standards in the entity network and systems
Keep watch over potential new threats and risks
Preparing reports by use monitoring tools
Contribute on the Business Continuity and Disaster Recovery Plan
Contribute on Keeping the Plan Up-to-date
Contribute on BCP yearly test process
The ideal Candidate should have:
Good analytical and problem-solving skills
Good investigation skills
Good written and oral communication skills
Ability to multi-task in a fast-paced environment
Ability to work independently.
Must be able to prioritize and meet deadlines.
Criteria to be fulfilled:
University degree in Computer Science, Electronic Engineering, or related fields.
5 years of Experience as a network and domain administrator.
Experience in networking Management (LAN/WAN), firewalls, IPS, virus detection, VMware.
Good knowledge on Network Monitoring systems.
Knowledge of Penetration and Vulnerability detection systems.
English (written/oral).
How to apply:
Strong motivated candidates looking for a dynamic job and professional team are welcomed to apply by following these steps:
Properly fill our standard application form available to be downloaded. We kindly advise to carefully fill all required info and obligatory fields. For downloading the application form, please click here (http://www.credit-agricole.al/wp-content/uploads/2013/09/Job-Application2.doc).
Submit the completed application form by sending it only through this e-mail address jobapplication@credit-agricole.al
In the e-mail subject please specify clearly the position reference number.
Please note that only shortlisted candidates will be further contacted from our HR specialists.
Publication date: 04/09/2013
Job Title: Information Security Specialist
Location: Tirana
Division: Information Security Sector
Closing Date: 18/09/2013
Credit Agricole Albania Bank S.A., Crédit Agricole Group, a market leader in universal customer-focused banking in France and one of the largest banks in Europe seeks to serve the real economy by supporting its clients’ projects in all areas of retail banking and associated specialized business lines.
Emphasizing its values and its commitment, we are the bank of common sense. It puts the satisfaction and the interests of its 54 million customers, 160,000 employees, 1.2 million shareholders and 6.5 million mutual shareholders, at the heart of its activities.
We are seeking to recruit: Information Security Sector Specialist
Direct Reports to: Head of Information Security Sector
Job Purpose: The Information Security Sector Specialist is responsible for the control process, monitoring process, change management process, risk assessment for different projects, security configuration reviews (IPS, firewall, domain, vmware, backup), Access right process, Risk Assessment methodology, Security Trainings for the employees, BCP support, Gap analysis, Patch management, vulnerability mitigation process, penetration tests, incident follow up process, information classification project, different daily tasks
Main Responsibilities:
Network security
Perimeter protection – define the measures and baselines
Fire Wall protection (internal and external), rules analysis, approval, and continuous monitoring
Intrusion Prevention protection (internal and external), rules analysis, approval, and continuous monitoring
Device protection following secure configuration principles
Analyse the new technologies in network security (encryption, layer 2 protection, IPS IDS etc)
Create and execute the control plan to insure the required level of security
Continuous Monitoring of the entity network
Systems Security
Define and concept the baseline security on all systems
Check the Log Management Systems, for log retention, reviews, and analysis
Review and analysis the needs for security protection on different systems (domain security etc)
Ensure proper vulnerability management process
Ensure proper Penetration tests process
Ensure proper Patch management process
Review the backup plan on systems and DR measures
Ensure proper Endpoint (Workstation) protection
Propose and Control implementation of proper security measures for workstations in the Bank
Perform regulatory controls based on the Year control plan
Develop and maintains procedures based on the Information Security Policies
Ensures and monitors compliance with Information Security Policy, procedures and guidelines.
Undertakes a continuous Risk Assessment process over bank network and other systems
Review and analyses the data leak prevention/protection mechanisms
Ensure if proper controls are in place for protection of mobile devices (laptop encryption etc)
Ensure that the incident management process is handled properly over the network and system level.
Investigate for security breaches.
Insure proper implementation of local and group standards in the entity network and systems
Keep watch over potential new threats and risks
Preparing reports by use monitoring tools
Contribute on the Business Continuity and Disaster Recovery Plan
Contribute on Keeping the Plan Up-to-date
Contribute on BCP yearly test process
The ideal Candidate should have:
Good analytical and problem-solving skills
Good investigation skills
Good written and oral communication skills
Ability to multi-task in a fast-paced environment
Ability to work independently.
Must be able to prioritize and meet deadlines.
Criteria to be fulfilled:
University degree in Computer Science, Electronic Engineering, or related fields.
5 years of Experience as a network and domain administrator.
Experience in networking Management (LAN/WAN), firewalls, IPS, virus detection, VMware.
Good knowledge on Network Monitoring systems.
Knowledge of Penetration and Vulnerability detection systems.
English (written/oral).
How to apply:
Strong motivated candidates looking for a dynamic job and professional team are welcomed to apply by following these steps:
Properly fill our standard application form available to be downloaded. We kindly advise to carefully fill all required info and obligatory fields. For downloading the application form, please click here (http://www.credit-agricole.al/wp-content/uploads/2013/09/Job-Application2.doc).
Submit the completed application form by sending it only through this e-mail address jobapplication@credit-agricole.al
In the e-mail subject please specify clearly the position reference number.
Please note that only shortlisted candidates will be further contacted from our HR specialists.
Publication date: 04/09/2013