Paese:

Italia

Città :

Milan

Area di competenza:

Sicurezza

Descrizione posizione

As Cloud Security Engineer you will contribute significant technical expertise to ensure the safety of information systems and assets, protecting systems and information from unauthorized access or modification. You will contribute to development of security strategy, policy and procedures. Additionally, you will work with internal stakeholders to understand their data security needs, providing recommendations as required. Overall, you will help ensure that stakeholders understand and adhere to necessary policy and procedures.

Day-to-day, you will:

- Contribute to, and may lead, analysis of information/technology systems compliance and security issues, resolving complex issues if needed

- Support the vulnerability management process for company assets

- Participate in security incident response activities

- Identify and resolve security issues affecting architectures, network/data traffic, and network access

- Provide expert security infrastructure support for enterprise systems, proactively identifying issues and potential resolutions

- Assess information security risks of new projects and existing IT environments, relying on technical expertise

- Contribute to development of a variety of security deliverables, including: system security plans, security and risk assessment reports, privacy impact assessments (PIA), contingency plans, milestones, etc.

- Identify, validate, and report on security incidents and events based on enterprise policies and procedures

- Create compliance programs and activities, contributing to implementation

- Participate in forensic information security investigations involving enterprise computers, servers and/or networking infrastructure

- Support junior security team members in developing IT security skills and expertise


Your technical and non-technical skills may include:

- Experience with vulnerability management technologies (e.g., Nexus, Qualys, Rapid7)

- Experience with security incident management

- Knowledge on ISO 27001 certificated ISMS and implementation guidelines

- Knowledge of principles of risk management

- Experience in infrastructure technologies and solutions, especially Microsoft and cloud

- Experience with operation management, systems security, testing, databases and mobility considerations

- Knowledge on data protection and identity management techniques

- Solid understanding of the software and security development lifecycle

- Knowledge of security practices for cloud computing environment

- Experience performing technical assessments and control testing of applications and networks, firewalls, operating systems, etc.; includes assessment of security risks, and user access security

- Experience interacting with internal clients from diverse professional backgrounds

- Experience working with global teams, including working with off-shore teams to facilitate project work

- Demonstrated excellence in communicating and presenting complex information to technical and non-technical stakeholders, both verbally and in written form

Good written and spoken English skills

Preferred Certifications:

Certifications as CISA, CISM, CISSP and/or Microsoft certifications (MCSA, MCSE) are a plus

You will likely possess a degree (or equivalent), preferably in IT-related field

You will likely have 4+ years if experience in security field with significant focus on IT Security


Presenta domanda ora

Condividi questa posizione:

Condividi Facebook Twitter Email

A proposito di Avanade

Avanade è leader nella fornitura di servizi digitali innovativi, soluzioni aziendali ed esperienze accuratamente progettate per i clienti: il tutto si fonda sulla capacità delle persone e sull'ecosistema Microsoft. I nostri professionisti uniscono competenze tecnologiche, di settore e di business per creare e implementare soluzioni di successo per i nostri clienti e i clienti di questi ultimi. Avanade può contare su 29.000 persone sempre in contatto tramite canali digitali in 23 paesi, per offrire ai clienti le idee migliori attraverso una cultura collaborativa che valorizza la diversità e riflette le comunità in cui operiamo. Accogliamo e ricerchiamo persone di talento che possono portare tutto il loro bagaglio personale nel lavoro, creare team inclusivi e promuovere la diversità all'interno e all'esterno dell'organizzazione. A maggioranza di proprietà di Accenture, Avanade è stata fondata nel 2000 da Accenture LLP e Microsoft Corporation. Scopri di più su www.avanade.com.