Cyber Security Expert Category: Software Development/ Engineering
Main location: Portugal, Lisboa, Lisboa
Position ID: J1124-2350
Employment Type: Full Time
Position Description: CGI is looking for a Cyber Security Expert to join our team.
Your future duties and responsibilities: APPLICATION SECURITY Ensure the effective implementation of Secure SDL including the DevSecOps and Threat modelling practices.
Identify and implement the latest security standards for internet facing and internal assets.
Improve the Vulnerability Management at the application level in terms of efficiency as well as effectiveness (including Static Acceptance Security Testing - SAST, Dynamic Acceptance Security Testing - DAST and Software Composition Analysis - SCA).
Perform Security risk assessments and reviews to be presented to respective committees.
Ensure the adequate security level for all WM GAIM applications, whatever the IT project manager's location and hosting provider.
IT SECURITY COMPLIANCE Ensure the alignment with the Group and WM GAIM security policies, for both project and production assets.
Ensure the protection of WM business data with an adequate security level of WM assets, based on project assessment and production review processes.
Ensure the compliance with regulatory bodies requirements, including for APAC (HKMA, MAS, FSC), EU (DORA), Switzerland (FINMA).
Leveraging on a deep knowledge of Security standards such as NIST, CIS, ISO2700x, ensure the compliance with the IT security requirements.
Ensure the compliance with the Third-party Technology risks and Cloud security.
Identify the process gaps and provide solutions.
CYBER SECURITY Ensure the coordination with other IT security or other actors in the region or globally.
Assist for a Risk Treatment for any WM issue, based on the processes.
Identify the IT security risks in advance, record and follow-up them.
Define and contribute to processes from cybersecurity perspective.
Periodic reporting of security status to WM IT Domain Head and security champion.
Ensure the regular reporting for management follow-up.
Handle Cyber alerts & Incident by investigating and following with handlers until the issue is closed.
Ensure to onboard the Assets & Applications in SIEM and handling BAU, create / update relevant documents.
PRODUCTION SECURITY Ensure the effectiveness and success of vulnerability management process.
Ensure the compliance level of the production environment and integrate to reporting.
Required qualifications to be successful in this role: Certification (not mandatory but strongly recommended): CISM, CCSP, CSK, CEH, CISSP
Technical Skills: Application Security
IT Security Compliance
Cyber Security Incident Management
Vulnerability Management
Language Skills: English - Expert
French - Notions
Soft Skills: Ability to deliver / Results driven
Ability to synthesize
Communication
Data Analytic
Knowledge of Bank Sector
What you can expect from us: Together, as owners, let's turn meaningful insights into action.
Life at CGI is rooted in ownership, teamwork, respect and belonging. Here, you'll reach your full potential because...
You are invited to be an owner from day 1 as we work together to bring our Dream to life. That's why we call ourselves CGI Partners rather than employees. We benefit from our collective success and actively shape our company's strategy and direction.
Your work creates value. You'll develop innovative solutions and build relationships with teammates and clients while accessing global capabilities to scale your ideas, embrace new opportunities, and benefit from expansive industry and technology expertise.
You'll shape your career by joining a company built to grow and last. You'll be supported by leaders who care about your health and well-being and provide you with opportunities to deepen your skills and broaden your horizons.
Come join our team-one of the largest IT and business consulting services firms in the world.
#J-18808-Ljbffr