Network Security Engineer MS Azure - EU Institution Luxembourg
EKXEL IT Services
- Luxembourg
- CDI
- Temps-plein
- Advise the internal IT Security team on security best practices in regard to M365 and MS Azure security architecture, configuration and operations,
- Analyse reports related to various security services such as web filtering, SOC activities, security incidents, vulnerability management, vulnerability remediation, patching, penetration testing, etc.,
- Contribute towards draft assessments of the maturity of various processes covered by standards such as NIST CSF,
- Provide documentation in support of internal or external audits,
- Assist in preparing quarterly KPI reports,
- Review the -related documentation such as policies, processes, or procedures,
- Follow-up on deliverables with internal and external parties,
- Develop MS Office material to support the creation or the improvement of various security requirements, plans and test cases,
- Perform market analysis of different security solutions and concepts,
- Support in successful achievement of daily tasks (BAU), such as incident management, user request management (new software security assessment, spam/phishing analyses), and ensure BAU tasks are performed in a timely and accurate manner, and with high quality,
- Provide a general quality assurance (QA) function and point of challenge on the quality of documents.
- Monitor various security sources to identify and assess any new or emerging threats and risks for the client regarding its IT-system, its processes, and its staff,
- Prepare draft assessments for data location framework (DLF) reviews,
- Assist on the internal controls framework (ICF) review exercise review documentation and working files to support the yearly ICF process and ensure ICF documentation is up to date.
- Review the documentation to ensure clarity, consistency and alignment with the best security practices and propose improvements as applicable,
- Assist on the business continuity or disaster recovery assignments, and participation in cybersecurity exercise preparations,
- Support on other tasks, if necessary, such as organizing meetings, drafting agendas, preparing minutes, or advising on security topics
- Master's degree in a relevant field is required (Computer Science, IT Security),
- Minimum 6 years of experience in IT Security, Enterprise/IT architecture and infrastructure, outsourced service providers and cloud services, or Information Security
- Solid understanding of the current IT security threat landscape and countermeasures,
- Minimum 2 years of experience with MS 365 security administration
- Minimum 2 years of experience with MS Azure management and hardening
- Extensive knowledge of contemporary IT security concepts, solutions and tools,
- Experience in data protection and data privacy considerations in implementing various IT or IT security solutions,
- Extensive knowledge of threat and vulnerability management, deception, and/or threat intelligence technologies and services,
- Project management experience for IT security projects,
- Experience in conducting failover tests of data centres,
- Experience in evaluating IT security controls of various candidate providers,
- Experience in internal control framework documentation reviews and attestations,
- Experience in conducting cyber exercise simulations or updating cyber incident response plans, Ability to independently undertake assigned tasks or manage smaller projects with minimal intervention from supervisor,
- Service Delivery Management experience (vendor management, reporting, relationship management, etc.),
- Excellent communication skills in English, written and spoken, is required