Position summary Responsible for the safeguard of Canyon's computer networks and systems. Plan and carry out security measures to monitor and protect sensitive data and systems from infiltration and cyber-attacks. Make sure we have the right software and hardware in place, supervise IT projects that guarantee the safety of valuable information as well as our internet and intranet infrastructure. Document and report security threats, as well as to take measures to prevent these threats from being carried out. Responds to queries, runs diagnostic programs, isolates problem, and determines and implements solution. Summary of Role and Responsibilities · Participation in the further development and optimization of processes, structures, architectures and systems in the IT security environment · Introduction of an internal control system for the IT security components used · Development of tried and tested IT security concepts and solutions in compliance with regulatory requirements, standards and best practices · Realization and operation of security concepts in the cloud and classic data center architectures · Assessment and implementation of current business requirements measured against IT security standards · Analysis and management of weak points in the IT environment · Determination of optimization potential and corresponding implementation via measures and projects · Operation and support of the target environment using ITIL processes such as B. Request, incident, problem and change management · Development of concepts, trainings and campaigns for user-oriented IT security · Develop, execute and track the performance of security measures to protect information and network infrastructure and computer systems · Configure, troubleshoot and maintain security infrastructure software and hardware · Install software that monitors systems and networks for security breaches and intrusions · Monitor systems for irregular behavior and set up preventive measures · Stay up to date with latest security technology and trends · Conduct penetration testing, research weaknesses and find ways to counter them · Investigate Security Breaches · Educate and train staff on information system security best practices Education, Experience, and Knowledge / Skills / Abilities Minimum Education Requirements: Bachelor's Degree in Computer Science, Information Systems or related field. Work Experience: · Minimum 5 years of relevant technical experience · 3+ professional experience in the field of IT security · Certifications such as CISSP, GSEC, CEH or CISM desired Knowledge, Skills, and Abilities: · Strong knowledge of Active Directory (on-premises and Azure AD) · Strong knowledge of Microsoft security tools (Microsoft Defender & Azure Sentinel) · Experience in the area of SIEM, ISMS, IT security concepts, data protection and weak point analysis · Knowledge of regulatory requirements (IT security law), standards (ISO 22301 (BCM), ISO 27001 (ISM) · Strong knowledge of Windows and Mac platforms as well as IT Infrastructure platforms. · Strong interpersonal, communication and listening skills; able to communicate effectively with all levels of the organization · Experience with best practices (ITIL) · Strong problem solving skills · Experience with telephony system, application support, end-user support, etc · Willingness and ability to work a flexible schedule, including evenings and weekends Work Environment Work is performed within an office environment, with standard office equipment available.
