Cybersecurity Risk Analyst- GISACC

Cybersecurity Risk Analyst- GISACC - ( 220003K6 )

Mission

Part of the Group Cybersecurity team, the Cybersecurity Risk Analyst realizes
the following activities:
*
Risk analysis (‎70%)
*
Project security advice/control (‎20%)
*
Audits (‎5%)
*
Security watch (‎5%

Responsibilities

As part of these activities, you will be in charge of:
*
Performing risk analysis
*
Perform third party risk assessments using the Valeo methodology and tool
(Governance and technical risks) and write the corresponding reports in
English
*
Perform project information risk assessments using the Valeo methodology and
tool (Governance and technical risks) and write the corresponding reports in
English
*
Be a source of proposal and advice on the solutions (technical or
organizational) to reduce these risks

• 
  

  Following Information System projects during their whole lifecycle

  
  
  
  
  • Control and advize during the RFI/RFQ phase
  
  
  • Advize/control the security measures to be included in the contract
  
  
  • Advize/validate the architecture, check the results of the cybersecurity
    tests, follow-up the security action plans, advize for the Go-live decision
  
  
  • Advize/validate the major changes during the Run phase
  
  
  
  


• 
  

  Audits

  
  
  
  
  • Internal audits
  
  
  • Audits of third parties
  
  
  • Refine/remediate the architecture
  
  
  
  


• 
  

  Security watch

  
  
  
  
  • Security watch on threats
  
  
  • Security watch on security solutions
  
  
  
  

Travels abroad are expected according to the needs.

• Bachelor's degree in Computer Science, Information Security, Cybersecurity, Risk Managementing, Engineering or Information Technology.


• Knowledge of the ISO 270xx norms


• ISO ‎27005 certification is appreciated


• Fluent in English

Experience
*
You justify a significant experience of at least ‎3 years in cyber security
with a strong focus on risk management
*
You have already conducted several security audits and are able of having a
relevant risk analysis at the governance, architecture and technical level

Knowledge
*
In-depth knowledge of infrastructure and security solutions is mandatory
*
Knowledge in software development is a plus

Skills
*
You are structured, methodical with a real concern for the analysis of detail
while being able to keep the big picture.
*
Your pragmatism allows you to be effective, to bring solutions and to
convince.
*
You have real communication skills: listening, diplomacy, pedagogy. Your
ability to maintain an open mind without prejudice allows you to foster
dialogue and the relationship of trust with people with very diverse profiles
/ professions in an international context
*
Your writing level in English is excellent and you know how to produce
executive summaries.
*
Finally, your autonomy, your proactivity and your curiosity lead you to be in
a dynamic of regular reinforcement of your knowledge.

Your wish
*
Join an international group where challenges will be a real way for you to
progress.

Primary Location

: EG-C-Cairo

Job

: Information Systems

Organization

: H90E Valeo Group EGYPT

Schedule

: Full-time

Shift

: Day Job

Employee Status

: Regular

Job Type

: Regular

Job Posting

: ‎26/‎03/‎2022, ‎10:10:‎42 AM