Company: Petroplan
Skills: IT - Analysis & Management
Experience: 7 + Years
Education: Bachelors/3-5 yr Degree
Salary: Negotiable
Location: London, England, United Kingdom


Role: Cyber Security Assurance Engineer

Location: Hassi Massaud, Algeria

Employment Type: Contract. Rotational role (28 days on, 28 days off)

Overview

The Security Risk and Compliance Analyst provides technical direction for the risk management and compliance functions within the Information Security team. This person will conduct activities ranging from policy, auditing, and risk analysis to overall risk mitigation. This individual will also build, develop, and maintain relationships with our internal stakeholders and external vendors to help mature and enhance our enterprise-wide compliance with security.

You will support security risk assessments, implementations and operations of security technologies and software tools especially in area of data loss prevention and/or identity and access management. The successful candidate will also help to develop operational processes for identity or data loss lifecycle management and document assessment results.

Position Duties:
  • Responsible for all activities within the security compliance and risk management lifecycle. These activities include: risk analysis, auditing, mitigation, and governance & policy.
  • Develop, update, and monitor compliance with information security policies designed to ensure the confidentiality, integrity, and availability of systems and data.
  • Manage periodic independent security audits, i.e. ISO27001, ISO 9001, SSAE18
  • Manage internal and client information security audits
  • Technical risk and compliance assessment support
  • Support design and implementation of data loss and / or identity management systems
  • Support of operational activities e.g. operational review and analysis of access requests and/or data leakages to ensure compliance,
  • Oversee periodic penetration tests and triage remediation for vulnerabilities identified
  • Leads efforts in developing/improving process, procedures, and documentation for all aspects of security
  • Work closely with key process owners to implement the agreed remediation actions
  • Identify and recommend gaps and improvements to business processes
  • Lead workshops with Process and Control Owners
  • Perform control testing and agree results with control owners
  • Work closely with key process owners to implement the agreed remediation actions
  • Oversee Security Service projects to ensure products are developed in compliance with security standards and practices

Candidate Requirements:
  • Experience: 7 years of IT administration and Security engineering experience
  • Relevant security knowledge and experience in two or more of the following areas: Audit, compliance, risk management & GRC tools
  • Firm understanding of networking basics, including TCP/IP, FW, Domains, Active Directory Management
  • Windows System administration
  • Working knowledge of at least one scripting language (Python and Shell preferred)
  • Good understanding of security concepts, such as system hardening and vulnerability management and remediation
  • Experience maintaining critical and high visibility services for stakeholders
  • Policy configuration and implementation for networking and endpoint security controls
  • Demonstrated experience helping an organization successfully complete independent compliance audits under SOX, etc.
  • Well-versed in recognized security industry standards and leading practices, i.e. ISO, PCI, NIST, CIS, FedRamp,
  • Advanced knowledge of network protocols and operating systems (Windows, Unix, Linux, Databases)
  • Bachelor's degree in Computer Science or Information Technology
  • CISSP or security-related certification is preferred


ABOUT PETROPLAN

Petroplan is the trusted global recruitment solutions partner for clients and professionals in the oil, gas and energy sector. Our mission is to explore with you, seeking optimum talent solutions for our clients and the very best opportunities for our candidates.

Bringing over 40 years' experience, providing experts and professionals into roles across the energy sector from Engineering, Exploration and Production, O&M projects to Corporate & Commercial. Specialist industry & technical knowledge makes our team true experts.

10,000 placements in more than 55 countries for over 550 clients across 65 disciplines

Led today by a predominantly female Board of Directors who provide strong leadership and demand consistency of service to ensure clients receive unrivalled service levels and quality candidates to meet their specific needs. This leadership ethos is underpinned by a positive and client-led management structure.