Junior Security Analyst

Leopardstown, Dublin
  1. Full Time
  2. IT/Technology
Posting date:03 Sep, 2019

Title: Junior Security Analyst

Who you are:
You are adept as serving as a Cyber Security SME for new technologies and projects, You will be responsible for Technology Security signoff and the associated closeout / risk handling whilst driving and promoting an integrated approach to identify and reduce security risks. You will provide input into Vodafone’s Security Strategy, Cyber Security Baseline, and Risk Register.

Your team:
You will report to the Security Delivery Manager.

The next challenge for you:
As ‘Junior Security Analyst’ you will:
• Conduct threat modelling and security assessments to identify security risks.
• Develop Security Testing Plans for IT and Network projects.
• Provide IT Security assurance, guidance and support for projects and change requests.
• Act as an internal security consultant to advise or influence business and technical partners.
• Build productive working relationships and collaborate with the wider Technology team and the relevant business units to identify the right security controls for new solutions, products and modules.
• Represent Technology Security during project sizing sessions and gate reviews; provide high level (VROM) estimates of effort (time & cost); ensure estimates and security testing and acceptance criteria are agreed, documented and met.
• Identify, prioritise, design, test and report on the security controls required to bring the identified security risks within the accepted risk tolerance; work closely with project resources (architects, developers , testers, Operations) at a technical level to assist with the effective mitigation of security risks
• Verify vendor mitigation plans in terms of alignment to the local IT Security Reference Architecture, coverage, efficiency, dependencies and implementation schedule
• Ensure security testing and mitigation reports for programme boards and steering committees follow the agreed format and are delivered on time; escalate security risks as required
• Provide architectural guidance for secure software development, integration and testing
• Provide input for the implementation of the Cyber Security Baseline.
• Review project changes that impact the security assessment or testing.
• Adopt and promote a culture of continuous improvement to minimise inefficiencies.
• Manage contingency / unplanned security (re)assessment and (re)testing.
• Engage in commercial discussions with vendors regarding costs for security technologies, assessments, testing and mitigation.
• Be expected to provide high level cost & time estimates (VROMs) during the Demand Planning phase of projects.
• Ensure day-to-day coordination with vendors and contractors across multiple projects/work-streams.

Life at Vodafone

Raniya's Work Experience

James "Vodafone changed my life"

James "Vodafone changed my life"