Do you like defending computer systems and keeping attackers out of the company environments? Do you like being a superhero, fighting crime and solving puzzles?
Then this job is for you!
Visma’s Cyber Incident Response Team (CSIRT) is looking for passionate and highly skilled Information Security Analysts in conducting security incident response, adversary hunting, threat intelligence and digital forensics.
You will be a member of the Security Department, where your skills and contributions to manage Visma security will be very visible. You must love to innovate, analyze data, improve detection and to help team members and receive help from them. The team is international so you will use English both written and orally.
If the descriptions above fit you, and you can check several of the following bullets, Visma IT & Communications can offer you a very interesting work and competitive terms.
The current position is located in Sibiu or Timisoara, Romania
Master’s or Bachelor's degree in related fields (Engineering, Computer Science, Mathematics), preferably in Information Security with an overall minimum of 5 years of relevant experience
In depth knowledge of processes, research and performance analysis capabilities
Negotiation capabilities and problem solving mindset
Understanding the IT Service industry as well as the relevant marketplace
Effectively cope with change; comfortably adjust to alterations in work activities; able to decide and act with limited information; effectively handle risk and uncertainty in ambiguous situations
Demonstrated resilience, diplomacy, influence, relationship building, and problem solving skills in a variety of situations
Highly effective written and oral communication skills, excellent interpersonal skills and experience dealing effectively with a wide range of people
Fluency in Business English is required
Customer oriented behaviour
Fast learner - research capabilities for obtaining required information.
Relevant experience in:
Operating systems and computer networks administration
Knowledge of technical infrastructure, networks, databases and systems in relation to information security and risk management
Experience in web application security
Experience in security engineering, computer and network security, authentication, security protocols and applied cryptography
Experience in monitoring networks using a variety of tools to identify potential intrusions
Skills in security forensics activities, malware reverse engineering and cryptanalysis
Skills in scripting and programming languages
In-depth technical knowledge within information security areas:
Intrusion detection and monitoring
Security Incident Response
Vulnerability assessments, web and infrastructure pentesting
Experience in implementing security solutions, vulnerability testing, risk analyses and security assessments is an advantage
Would like to work primarily with information security technologies and processes
Conduct monitoring, operations and control tasks in regards to Security Operations Center (SOC) activities
Contributes in security incident management in regards to Security Incident Response Team (SIRT) activities
Performs vulnerability testing, risk analyses and security assessments
Investigate intrusion incidents, conduct forensic investigations and mount incident responses; Anticipate security alerts, incidents and disasters
Finds and documents new ways to solve existing production security issues
Develop automation processes to handle SOC and SIRT activities
Assist in activities related to information security management and ISMS operations and improvement processes. Assist with follow up of corrective measures
Deliver technical reports and formal papers on SOC, SIRT and forensics activities
Contributes to security best practices, ISO compliance and new security standards.
Assists in security training and awareness activities
Contributes to security programs for the organization
Attends conferences and trainings as required to maintain proficiency
Actively contribute to further developing of the Security Department in cooperation with the Team Manager and Department Manager
What Visma offers
We offer an exciting position in an international working environment where you will be part of a dynamic and highly skilled international team. You will have good opportunities for career development through internal training and diverse work assignments in a prominent international company. We offer competitive terms and conditions.
More information: email@example.com
How to apply
Please apply directly on this page using the “Apply now” button and use the pdf version of your documents.
If any problem appears in this process, you can contact us directly on the following email address firstname.lastname@example.org
If you enjoyed the puzzle please provide details how you solve it within a pdf report provided during the position application.
We conduct background checks on relevant candidates through our partner Semac.
Visma offers software and services that simplify and digitise core business processes in the private and public sector. The group operates across the entire Nordic region along with Benelux, Central and Eastern Europe. With over 11,000 employees, more than 1,000,000 customers and net revenue of € 1,526 million in 2019, Visma is one of Europe’s leading software companies. For more details visit www.visma.com .
IT service delivery in the digital age means rapid growth and major changes as emerging technologies introduce paradigm shifts. Cloud service delivery is the next major driver. Success in changing environments requires the ability to innovate, design and deliver while providing steady and secure IT deliveries.
In addition to providing IT services to our customer portfolio, Visma IT provides all Visma business units with the tools and infrastructure they need to deliver state-of-the-art solutions and services to their customers. By giving employees access to the right technology, we ensure quality at all stages of the customer journey. We also provide data storage in on-premise environments, in hosting environments and in the cloud, both public and private.
Our international teams base their work on an extensive knowledge of IT service delivery in both on-premise environments and the public and private cloud. Security is our number one priority, and to ensure that we comply with all laws and regulations, we are ISO certified in the areas of security, quality, project management and IT service delivery.
Security Department drives the Visma corporate governing model, oversees information security to ensure the objectives of the organisation are achieved.
In addition, it provides a powerful link between an organisation’s governing body, management and those responsible for implementing and operating an information security management system.
Security department is organised as a Cyber Security Incident Response Team (CSIRT aka CERT) and a Coordination Center (CC aka SOC) - Visma CSIRT/CC.
At the core of a successful CSIRT/CC is a strong foundation for operational excellence driven by well-designed and executed processes, strong governance, capable individuals and a constant drive for continuous improvement to stay ahead of the cyber adversaries.
The CSIRT/CC supports business objectives and effectively improves a company’s risk posture. A truly effective CSIRT/CC is one that provides a safe environment for the business to deliver on its core objectives in line with its strategic direction and vision.
The CSIRT/CC is designed to collect, integrate, and analyse alarms and logs from Visma siloed organisations, providing much greater situational awareness. Additionally, CSIRT/CC allows a transition to an intelligence-driven approach to security incident management, which is much more effective for handling advanced threats.
Visma CSIRT/CC provides significant value to organisation security through:
Unified security incident management
Optimization of security resources
Improved threat analysis across utility domains
Unified configuration/patch standardisation
More efficient forensics and root cause analysis
Governance of risk compliance
Security monitoring and security events management
Monitoring of security policies compliance
As soon as possible
Adrian Constantin Stanila
Karenslyst Allé 56 0277 Oslo