What are the responsibilities and job description for the Security Demand Manager position at Claranet?
Company Description
We are passionate about what technology can do.
We want to continually improve our service, people and technology.
We are proud that our customers benefit from our knowledge and experience.
We are Claranet and if you share our beliefs, we are looking for you.
Job Description
Through "Security by Design", we support our customers in their digital transformation projects from the very beginning in taking the necessary aspects of cybersecurity into account. As part of the customer’s IT security demand process, you will help ensure that all information security and data protection requirements, as well as security-relevant regulatory requirements, are taken into account in the customer-specific product launch process. You therefore advise and accompany exciting digital transformation projects from the definition to the introduction in questions of IT security.
Tasks
· Based on the policies and guidelines of our customers as well as best practices of IT security management, you identify the necessary security requirements for projects. In doing so, you analyse the planned architectures and designs of the projects, identify possible threats and propose suitable security controls to defend against the threats. You coordinate the resulting requirements with the projects and their service providers.
· You will interface to other security related experts covering topics such as data privacy, physical security, or fraud prevention to align the security design of the solutions
· During the development phase you will act as reviewer and consultant for the designers and developers to comment and guide on the implementation of security measure
· You will be actively involved in IT security risk management, especially in the identification, evaluation and tracking of IT security and data protection risks in projects.
· After the implementation, you check the fulfilment of the requirements in the security assurance process and document them by collecting evidence.
· You supervise and drive reporting and documentation of the projects for auditing purposes
Qualifications
The projects of our customers cover a wide range of project types, technologies and size. A generalists attitude helps to master the challenges of working on the introduction of 5G in the morning and migrating legacy data warehouses into the cloud in the afternoon.
You bring a structured, independent and reliable way of working, and the ability to work in a team and customer orientation? Then you fit perfectly into our team!
In addition to these qualities, it would be advantageous if you fulfil some of the following points:
· Academic degree in IT security, computer science, engineering or comparable training
· Several years of relevant professional experience
· Good knowledge of IT security, information security and cyber defence
· Good knowledge of security technologies, security architectures and security-by-design
· Experience with IT security standards and best practices (e.g. ISO 2700x, Cobit, PCI-DSS, etc.)
· Deeper knowledge in at least one IT domain such as networking, cloud computing or application development
· Ideally certification as ISO27001 auditor, CISM, CISSP, CISA or T.I.S.P.
· Solid knowledge of standard office tools is a prerequisite
Additional Information
Remote work
Fluent in English