Cyber Defense Manager - София

Описание

ABOUT YOUR NEW JOB
You will have the opportunity to be part of a very complex environment of cutting-edge IT technologies and industrial Cyber security, and to lead daily mission of defending Coca-Cola Hellenic against cyber threats. You will be responsible as well for the management of security services provided by our strategic IT/OT SOC and IT Infrastructure & Application Maintenance and Support vendors in the areas of security monitoring and incident detection and response. The position reports directly to the Group Cyber Security Director/CISO.
YOUR NEW KEY RESPONSIBILITIES:
• You will oversee the design, implementation, communication and maintenance of the Group Cyber Defense Strategy and Program, in alignment with NIST, ISO and other best practices;
• You will ensure operational best in class incident response process and execution, management of security breach investigations and leading the active defense function;
• You will lead personally incident response for all critical and high severity cyber security incidents;
• You will lead post-incident activities and make sure that lessons learnt have been distributed to all key stakeholders;
• You will establish an active defense function by researching for attacker's tools, techniques and procedures, analyzing threat intelligence. Execute campaigns to identify attackers proactively;
• You will upgrade the cyber security product strategy and roadmap, based on input from incident management lifecycle and technical security assessments results;
• You will plan, organize and deliver tabletop exercises for different target groups (tactical / operational teams, cross-functional teams, C-level executives);
• You will manage effectively and maintains strong relationship between CCHBC and vendors (specifically for SOC and IT outsourcing vendors);
• You will lead executions of audits, penetration testing, red/blue/purple teaming, source code reviews, vulnerability assessment exercises;
• You will liaise with the security architects and define required technical security assessments before deployment of new systems, applications, IoT devices and plant equipment to ensure security by design;
• You will develop regular reports on operational metrics, qualitative KRIs/KPIs and threat trends for CISO and business executives.
 
ARE THESE YOUR SECRET INGREDIENTS?
• I have completed my Bachelor’s and Master’s Degree in Computer Science, Computer Engineering or Information Security;
• I have 8+ years of security operations, security assurance and incident response experience across all areas of the process (planning, communications, analysis, mitigation, optimization, tabletop exercise);
• I am experienced in planning, executing and remediating findings from penetration testing and red teaming exercises;
• I have sound understanding of attacker’s Tools, Techniques and Procedures (TTPs) and Indicators of Compromise (IOC);
• I am experienced in implementing international standards and best practices (i.e. NIST, ISO, SANS);
• I have experience working with active defense and threat intelligence to enhance cyber defense;
• I have technical knowledge and experience in the following domains/technology incident response areas: AV, EDR, proxies, IPS/IDS, NGFW, WAF, email protection, SIEM, SOC operations, ICS/OT security, threat intelligence research, CSIRT and attack / malware analysis;
• I have acquired incident response, penetration testing and general security certifications (i.e. GCIH, ECIH, CEH, OSCP, CISSP, CFR, CySA+ etc.);
• I have proven experience to work internationally on complex assignments with various stakeholders;
• I have excellent vendor and project management skills;
• I have business awareness, excellent written and oral communicational skills, strong interpersonal skills.

HOW CAN YOU BENEFIT FROM THIS POSITION?
• Opportunity to work with the leading technologies and vendors in the area of responsibility;
• Opportunity to gain deep business understanding of FMCG industry on a Group level;
• Further enhancement of your capabilities in the field of Cyber Security in plants and IoT;
• Robust cyber training program for continuous education and development;
• You will be able to build international experience in a multicultural and dynamic environment.

Изисквания към кандидата

Езикови познания:

Трудов опит:
С професионален опит над 3 г.

Образование:
Бакалавър

Профил:
Bachelor’s and Master’s Degree in Computer Science, Computer Engineering or Information Security

Ние предлагаме

Вид заетост:
Пълен работен ден

Срок на заетост:
Сезонна

Договор:

Ниво в йерархията:

Категория:

ИТ и Компютърни специалисти

Държава:

България

Населено място:

Гр. София

Адрес:

ул. "Рачо Петков Казанджията" 8

Дата:

26.07.2019

Организация:

Coca-Cola HBC Bulgaria AD
Фирма/Организация - Директно търсеща служители

Детайли за организацията:

Повече информация за Coca-Cola HBC Bulgaria AD може да получите ТУК