Security Architect - Brussel

At Aston Carter International we are currently looking for a Security Architect.

Period Mission: 6 months renewable
Start Date: ASAP
Location: Brussels (possible travel within Benelux and France)
Languages: English, French and if possible Dutch.

The Information security & Risk Management (ISRM) department of our client supports IT and the businesses to help them develop adequate information security solutions.

The ISRM missions are to:
· Build up and support the implementation of a flexible information risk mitigation strategy for the
businesses in the scope of BNP Paribas Fortis, in line with the BNPParibas group Information Security Policy.
· Deliver best fit security services and solutions to protect business operations and assets
· Lead the information security maturity improvement programs
· Manage the BNPP Fortis information security community to ensure coherence & synergy

Consequently, the mission of the “ISRM architecture team” consists in supporting the Business and
IT projects in the domain of Information Security. We advise them on security issues and help them
(in collaboration with IT architects) to define the appropriate security architecture for their
applications / projects. These tasks are performed under the umbrella of a Risk Assessment Process,
and supported by a Risk Assessment methodology and a set of available supporting tools. We play
also the role of “Single point of contact” for the security community; while doing our best to
facilitate the contacts between ISRM (Information Security & Risks Management) and the Business/IT.

=> Personal Skills:

- Strong and proven Communication and Influencing skills;
- Ability to work in a dynamic and multicultural environment with a strong team spirit;
- Ability to manage time and priorities efficiently and to work under stress.
- Good analytical and problem solving skills;

=> Business experience required

- 5 years of professional experience in IST

=> Technical experience required

- Information security in general (awareness of the best / common security practices in the field of application development / IT projects). Good understanding of IT security technology and processes (PKI, Secure datacenter, secure networking, web infrastructure, etc.); Good conceptual knowledge of the Information Security Standards & Frameworks (ISO17799, ISO 2700);

- Preferable:
§ Past experience in the field of ISO 2700x based Technical Risk Assessments or Audits (assessment, mitigation plan development etc.)
§ Certified Information Systems Security Professional CISSP;
§ IT architecture
§ Web Application Security Development. (OWASP)
§ PCI-DSS experience in bank environment

OBJECTIVES:

- Support IT projects and main IT changes based on our security expertise and with an adequate risk
analysis.
- Advice and contribute to security architecture projects
- Guarantee usage and conformity of project according to security architecture rules and methodology.
- Participation to external work groups and regular contact with security providers
- Single point of contact for business on IT Security related topics

Cet e-mail est protégé contre les robots collecteurs de mails, votre navigateur doit accepter le Javascript pour le voir