1 - Position overview
Reporting to the Chief Information Security Officer (CISO), the Deputy CISO assists the CISO in the education of staff on cyber threats and vulnerabilities, cyber risk and mitigation methodologies and is responsible for developing and implementing cyber security initiatives, policies and procedures, in particular :
- Monthly security reporting related to PCIDSS compliance or Dalenys owned code of practice for information security controls (based on ISO/27002)
- Vulnerability assessments (Qualys, Nessus), code review (PHP) and system security audit (Linux, BSD, Microsoft)
- Penetration testing based on NIST SP800-115
- Risk analysis (NIST SP800-30, ISO/27005)
- Daily security monitoring and forensics
2 - Minimum requirements
# Education & Experience
- 5 years of infosec technical work experience.
- A fluent (or native) English and French is a prerequisite for this position.
# Knowledge, Skills and Abilities
- Deep understanding of information security technology approaches, tools, and methodologies.
- Ability to work effectively in a team environment.
# Preferred Qualifications
- In-depth knowledge of information security standards, with an emphasis on ISO27x and PCIDSS.
- Strong technical skills to perform penetration tests, vulnerability scanning, forensics analysis and security monitoring.