---------------------------------------------------
SECURITYFOCUS JOBS - NEW OPPORTUNITY
---------------------------------------------------
JOB DESCRIPTION
---------------------------------------------------
Position: Security Architect
Location: Frankfurt am Main, , Germany
Type: Contract
Closing Date: 2007-04-26
The successful candidate will work in an established team of IS Security
Experts in the project matrix and will contribute to the design of IS solutions
to meet the needs identified by the business area customers, whilst ensuring
compliance with the ECB’s IS security standards. He/she will:
participate in ECB and ESCB project teams by providing expertise in the areas
of IS risk management and IS security matters,
conduct risk analyses in line with IS security policies and methodologies,
define a security architecture, security requirements, security specifications
and technical (security design-related) as well as administrative and
organisational security measures in compliance with IS security policies for
the projects he/she is involved in,
identify and recommend solutions for problems arising during the project
implementation phase,
perform security assessments to verify security requirements and penetration
tests to identify security measures and highlight remaining risks to system
owners prior to the release of systems for operations and
work closely with the IS Security function in the IT Management Functions
Division with a view to reviewing and enhancing IS Security policies,
methodologies and procedures.
JOB REQUIREMENTS
---------------------------------------------------
Advanced university degree or professional training in computer science, or a
proven ability to perform the tasks required by the position.
Professional experience - essential:
Good knowledge and proven experience in the field of planning and implementing
IS security within IT projects.
Experience with IS risk management frameworks and analysis, including
functional aspects.
Ability to draft and present IS security-related documents, e.g. security
requirements, security specifications and security designs, in a clear and
concise manner.
Professional experience - desirable:
Experience with IT (security) architecture, preferably with a formal education
as an IT (security) architect, working on projects or in a similar position.
Experience of translating technological issues into a business context (e.g.
business and risk impact analysis of technology usage, business cases for
technology introduction) and of identifying technical solutions for business
and security requirements. The successful candidates will also have to explain
IT architectural and security constraints to non-technical (as well as
technical) colleagues.
IT skills – essential:
Excellent knowledge of IT, including expertise in at least two of the following
areas: application development and database security, OS security and network
security.
Knowledge of state-of-the-art security techniques and methods such as internet
security tools, IDS, PKI and encryption.
Good general security knowledge: Windows, Solaris, Oracle, Tomcat, MS Access,
Java, XML, Web services, etc
Professional certification in IS security (e.g. CISSP, CISA).
Good knowledge of security frameworks, in particular ISO 17799.
IT skills - desirable:
Awareness of the Enterprise architecture framework (e.g. TOGAF, Zachman, FEAF)
and of the relevant technical background, including knowledge of
state-of-the-art IT methodologies and tools.
Analytical skills to assess alternative cost-efficient solutions for
implementing requirements from a system design perspective, as well as to
assess the implications for human and financial resources.
Personal skills:
Ability to work on several tasks simultaneously and to respect given deadlines.
Strong interpersonal skills, self-motivation, commitment, ability to work in a
team and share information.
Good presentation skills are essential, together with precise documentation
capability.
Language skills:
Very good command of English with proven drafting ability. A working knowledge
of at least one other official language of the EU is also required.
Competencies
In addition to the technical competencies described above, the successful
candidate should be strong on the following soft skills:
Delivers Results: he/she will be expected to manage his/her time effectively,
while at the same time delivering the best possible responses. His/her
activities should be planned ahead and coordinated with others.
Communication: he/she will be able to explain complex IT issues to a non-IT
audience. He/she will ensure that his/her message is well understood and will
maintain the necessary confidentiality.
Commitment: the successful candidate will be prepared to put extra efforts in
reaching the deadlines with the expected quality. He/she will be willing to
contribute to the success of the project he/she will be assigned to.
CONTACT
---------------------------------------------------
Fixed-term contract until 31 December 2009
Applications should be submitted online in English. The online form can be
accessed by clicking on the relevant link below. All sections should be
completed. If you have never applied electronically for one of our positions,
please read our Applicants' Guide, which can be downloaded from the FAQs & Help
page.
Position band: F/G
European Central Bank
recruitment@ecb.int
---------------------------------------------------
SECURITYFOCUS JOBS
---------------------------------------------------
SecurityFocus now offers an online interface for
searching and managing job opportunities and resumes.
http://www.securityfocus.com/jobs
