Service de petites annonces immobilières, auto, moto, bateau, emploi, animaux, rencontres...
INFORMATION SECURITY OFFICER
|
|
| | |
| Titre |
INFORMATION SECURITY OFFICER |
| Description |
You mission: Safeguard the business from threats related to Information Risk by continuously assessing the local implemented information risk management framework and ensuring the proper identification and escalation of related incidents to the responsible domains. Your Role: - The Information Security Officer is responsible for the proper and timely monitoring and assessing of the operating effectiveness of the local implemented information risk management framework, in accordance with applicable ING Group security standards. Guarantee the integrity of this framework by adequately reporting of security incidents and identified security deficiencies, and where possible supplement with associated remediation plans. - The Information Security Officer, in this respect, is primarily responsible for the execution of the operational Information Risk Management (IRM) services and fulfils in principle a monitoring role. - Periodically assessments and reviews could be performed as well, but should be executed in close coordination with the Information Security Coordinator. - Furthermore it is expected from this role to periodically look for opportunities to broaden the scope of the monitoring activities and, in connection with this, streamline and optimize the current processes (to be able to cope with the enlarged scope). - In case deemed appropriate, certain monitoring tasks may be outplaced to 3rd parties, after formal approval of the local Security & Operational Risk Committee (SORC). It should be noted that the Information Security Officer will remain responsible for the proper execution of these monitoring tasks, even though some activities may be performed by 3rd parties. - The IRM services that should be performed are categorized into different domains. In this respect the following IRM services fall under the responsibility of the Information Security Officer: IRM Services: 1. Verify that the technology component inventory is being kept up-to-date and that ownerships are assigned properly and periodically reviewed. The mentioned inventory falls under the responsibility of IT Operations. 2. Execute, or coordination, the periodical penetration tests, war dialing tests and, if required, bug sweeps. In addition, applications, systems, and network components should be verified against compliance with the ING Operational Security Guidelines (OSG's) by means of vulnerabilities scans, network and perimeter monitoring, host and application monitoring. Progress and results should be adequately reported to the SORC and open security issues should be monitored and followed-up on closely. 3. Ensure that requests for (re-) certification of external links are properly and timely submitted to the regional committee of external connections (RCEC). The RCEC is responsible for reviewing and certifying all external links and it should ensure that proposed technical solutions comply with the ING Group Polici |
| Pays |
France |
| Date de publication |
9 décembre 2007 |
| Société ou Annonceur |
Michael Page |
| secteur activité |
Banque/Bq réseau |
| Qualification |
International |
| Type de contrat |
CDI |
|
|
Contacter le vendeur