Senior Cybersecurity Implementer

At UniSystems, we are working towards turning digital visions into reality. We are continuously growing and we are looking for a Senior Cybersecurity Implementer to join our UniQue team!

What will you be doing in this role:

• Analyze reports related to various security services such as web filtering, SOC activities, security incidents, vulnerability management, vulnerability remediation, patching, penetration testing, etc.,
• Contribute towards draft assessments of the maturity of various processes covered by standards such as NIST CSF, the Australian Essential Eight, or similar standards

• Provide documentation in support of internal or external audits
• Assistance in preparing quarterly KRI reports
• Advise the institution's internal IT security team on security best practices regarding MS 365, and MS Azure security architecture, configuration and operations
• Review the institution's security-related documentation such as policies, processes, or procedures;
• Follow-up on deliverables with internal and external parties;
• Take the lead on BAU security initiatives to ensure timely delivery and high quality;
• Develop material to support the creation or the improvement of various security requirements, plans and test cases;
• Perform market analysis of different security solutions and concepts;
• Support in successful achievement of daily tasks, such as incident management, user request management (new software security assessment, spam/phishing analyses);
• Provide a general QA function and ‘point of challenge’ on the quality of documents;
• Monitor various security sources to identify and assess any new or emerging threats and risks for the ESM regarding its IT-system, its processes and its staff;
• Preparation of draft assessments for data location framework (DLF) reviews, and in this context, IT security assessments;
• Review of documentation (as part of the internal controls framework review exercise or otherwise) to ensure clarity, consistency and alignment with best security practices and propose improvements and align with various teams as applicable
• Assistance in the business continuity or disaster recovery assignments, and participation in cybersecurity exercise preparations
• Ensure BAU tasks are performed in a timely and accurate manner without interruption;
• Other tasks, if necessary, such as organising meetings, drafting agendas, preparing minutes or advising on security topics. Coordinating with third-party IT security services providers on assigned topics.

What do you need to succeed in this position?

• A Bachelor degree in a related field of education and at least 12 years of experience in ICT, of which at least 6 yrs as a Cybersecurity Implementer. (Studies in a different field of education will need to be accompanied with at least 16 years of experience in ICT, of which at least 8 yrs directly related to the profile)
• Strong knowledge of Microsoft 365 and Azure security architecture, configuration, and operations.
• Solid understanding of security services: web filtering, SOC monitoring, incident response, vulnerability management, patching, and penetration testing.
• Experience with cybersecurity frameworks such as NIST CSF and Australian Essential Eight, and ability to benchmark maturity against them.
• Familiarity with disaster recovery (DR), business continuity (BCP), and cybersecurity exercises.
• Understanding of threat intelligence, risk assessment, and ability to monitor emerging threats.
• Experience preparing and reviewing security policies, processes, and procedures to align with best practices.
• Ability to provide documentation support for audits (internal and external).

Certifications (at least one) in cybersecurity, and at least one in engineering, cybersecurity solutions implementation or product specific are mandatory.

• A Cybersecurity certification (at least one is mandatory): GIAC Security Essentials Certification (GSEC), Certified Information Systems Security Professional (CISSP), CompTIA Security +, CSX Cybersecurity Practitioner (CSX-P), GIAC Certified Windows Security Administrator (GCWN), Systems Security Certified Practitioner (SSCP), Advanced Security Practitioner (CASP+), Cisco Certified Network Associate (CCNA), etc.
• Product specific trainings: Microsoft solutions (Azure, Defender, Purview, and others), EDR (e.g. Carbon Black), SOAR platforms (e.g. XSOAR), etc.
• Cloud environnements : Microsoft Azure
• IT service management: ITIL certifications
• Project Management: PM2, Prince 2, PMI.

At Uni Systems, we are providing equal employment opportunities and banning any form of discrimination on grounds of gender, religion, race, color, nationality, disability, social class, political beliefs, age, marital status, sexual orientation or any other characteristics. Take a look at our Diversity, Equality & Inclusion Policy for more information.