EU Institutions: Senior Security Architect
Etinars
- Strasbourg, Bas-Rhin
- CDI
- Temps-plein
Etinars is a values-focused company with multi-year experience, specialised in the recruitment of professionals for niche markets - managing the full-life cycle of specialist and executive level hires.
At Etinars, we genuinely care about who you are and what you need.
We place great emphasis on fostering robust, enduring connections built upon trust and transparency.
Our approach ensures a swift journey, leading you hand in hand towards signing your next career step. WHAT WE ARE LOOKING FOREU Institutions: Senior Security ArchitectJoin our client’s team as Senior Security Architect for the European Institutions (eu-LISA) in Strasbourg, France.
In this pivotal role, you will shape and safeguard the agency's security architecture, collaborating closely with Security Officers and IT teams. Your responsibilities will span from analyzing and defining solution security requirements to researching, evaluating, and implementing new security technologies.
Your ability to navigate multilingual meetings and work within a multicultural environment will be essential.YOUR TASKS
Support the Agency's Security Officers in developing and maintaining the security architecture of the agency in collaboration with the Enterprise Architect;
Create and manage security standards, design patterns and reference architectures;
Analyse and define Solution security requirements for networks, corporate applications / systems, end user computing, mobile devices and applications and data centre technologies and solutions;
Develop and maintain the organizational security technology framework;
Ensure that IT Security controls implementations meet the requirements of all regulatory requirements or contractual requirements;
Work with the Security Officer and IT teams to ensure that implemented security technologies are integrated and fully utilized as intended in the protection of agency information systems;
Monitor and analyse trends in IT Security;
Develop strategic and detailed technical roadmaps of the enterprise security environments and the associated technologies required to deliver these solutions on a global basis;
Develop the business, information and technical artifacts that constitute the enterprise information security architecture and solutions;
Research, evaluate, design, test, recommend and plan the implementation of new or updated information security technologies.
Elicitation of security requirements on BR,SHR,FR,NFR level
Follow up audit recommendations related to security architecture matters YOUR SKILLS AND EXPERIENCE
Minimum 6 years of relevant professional experience in IT security, of which:
Minimum 4 years of professional experience in security architecture. Certifications:
Certified Information Systems Security Professional with Information Systems Security Architecture Professional concentration (CISSP-ISSAP);
Certified Information Security Manager (CISM);
Certified Information Systems Auditor (CISA);
TOGAF certification;
Other similar credentials. Required skills and knowledge:
Advanced knowledge of core domains of IT Infrastructure, such as Data Networks, Server and Desktop hardware and Operating Systems, Messaging, Collaboration, Storage and Backups, and related monitoring and management systems;
Security-specific architecture methodology, e.g. SABSA;
Security architecture models, security strategy development, and compliance management;
Mobile Architecture, Network and Application Security and/or Data protection;
Secure development processes;
Application Security Vulnerabilities such as OWASP Top 10, CWE/SANS Top 25 and remediation approaches;
Cybersecurity control good practice such as the SANS Top 20 Critical Controls;
IT audit/assessment frameworks: ISO-standards; NIST, CobiT and industry standard application development methodologies;
Enterprise authentication authorization and identity management schemes (Active Directory, LDAP, etc.);
Technical security controls such as firewalls, IDS/IPS, vulnerability management, web application firewalls, security gateways, WiFi, mobile security, DLP, public key infrastructure, encryption and authentication techniques,
Relational databases, middleware applications, collaboration and document management solutions;
Cloud native security technologies;
XML, Web Services and SOAP protocols, both in client and server, as well as dynamic languages such as Objective-C, VBScript, JavaScript;
Network and web related security protocols (TCP/IP, UDP, IPSEC, HTTP, HTTPS, SMTP, SNMP, ICAP, etc.). Due to the particular nature of a large international organisation such as the European Commission, candidates should also have the following non-technical skills:
Ability to participate in multilingual meetings
Ability to work in multi-cultural environment
Excellent Team Player
Ability to understand, speak and write English (C1/C2)
High degree of discretion and integrity EXTRA INFORMATION
Work location: Strasbourg, France
Freelance competitive contract
The profile owner shall possess a Personnel Security Clearance for accessing EU Classified Information, at least for level EU SECRET. In case the person does not possess such clearance, then a fresh criminal record certificate (not older than 30 days from the signature of the Specific Contract) of the chosen candidate should be provided, together with the written proof that this security clearance process was initiated (up to level EU SECRET), and a copy of their national ID document / Passport, prior starting the work
The competence level will be tested during interview. In case the information about the competence level filled in the CV are not true, this may lead to refusal of candidate. Please note that, due to the sensitive nature of the data involved, this position is currently available only to individuals who meet the following criteria:
EU Citizens
Non-EU Citizens already based in EU with a valid work permit Once we receive your CV, we will take time to evaluate it carefully. Should there be a match for this or any other position at Etinars, we will be in touch with you. In case there is no match now don’t worry, we will make sure to keep your CV in consideration for future vacancies!In Etinars we are committed to supporting Diversity and Inclusion Community. If you identify as part of it and you meet the minimum criteria for the job, you will be given the opportunity to demonstrate your abilities at an interview.