Visma Software SRL - Timisoara Visma Software SRL - Timisoara Visma Software SRL - Timisoara Visma Software SRL - Timisoara Visma Software SRL - Timisoara

Security Manager

Security Manager 

The financial world has never been more dynamic than it is today. Big tech, fintech and the American tech giants are challenging the traditional parties. Outsourcing, innovation, new products and services are the answer and help is needed. Visma Idella uses its knowledge, experience and products to make the financial sector faster, more agile and more innovative. 

Visma Idella offers total solutions for banks, pension funds and investment institutions. Our solutions can be used for the (online) distribution and administration of pension products in the 2nd & 3rd pillar, for free capital accumulation products and for the benefit and reduction phase. We serve more than 4 million Dutch people from our software solutions, making us the largest supplier of its kind in the Netherlands. 

What are you going to do?
You work closely with others in the Business Operations team, including the internal auditor, security manager and legal counsel. You are the Go To Person for all security related aspects, from cloud security to physical security measures in our office locations. Working closely with Product Development (SaaS) and Managed Services (BPO) teams within Visma Idella, you ensure that security maturity levels remain at par, meet Visma standards and provide comfort to our demanding customer base.  

You actively contribute to the dialogue between certifying parties, the external auditor and our operational teams, in the context of the applicable control frameworks, evidence gathering and risk analyses for our ISAE reporting, ISO certification, SOCII and DNB Security Self Assessments. As a SaaS and BPO company that provides services to the financial sector, our licence-to-operate is a material component of our business. 

Additionally, the security engineers in our development teams and yourself interact closely on application of our security related policies, incident management as well as GDPR related issues with our data protection officer (DPO).

You also assess the risk level of the control measures and you draw up a risk-oriented work program that guarantees effective and efficient risk management for security matters. Our ambitions on the assurance roadmap are material and in the coming years, we will further mature our license-to-operate for our demanding customer base. 

Together with the team, your work will be reflected in timely ISAE statements (5 Type II’s per annum, heading for a few more in the years to come), delivery of ISO certifications (ISO27001, ISO27018) and a variety of regulatory components, in order for us to meet our assurance obligations in an appropriate manner. 

What do we ask of you?

  • Master's or Bachelor's degree in related fields, preferably Engineering, Computer Science, Mathematics areas, with an overall minimum of 5 years of relevant experience in IT / BPO / tech sector

  • Understanding the IT Service industry as well as the relevant marketplace

  • Effectively drive service development and contribute to company development processes

  • Effectively cope with change; comfortably adjust to alterations in work activities; able to decide and act with limited information; effectively handle risk and uncertainty in ambiguous situations

  • Fluency in Business English is required

  • Customer oriented behaviour

  • Have demonstrated skill described as responsibilities herein:

  • Knowledge of technical infrastructure, networks, databases and systems in relation to information security and risk management

  • Most experienced in managing IT security controls in an organization

  • Experience with computer network penetration testing and techniques

  • Skills in implementing security solutions, in vulnerability testing, risk analysis and security assessments

  • Experience in security engineering, computer and network security, authentication, security protocols and applied cryptography

  • Experience in monitoring networks using a variety of tools to identify potential intrusions

  • Ability to identify and mitigate vulnerabilities and explain how to avoid them

  • In-depth technical knowledge within information security areas:

    • Managing security operations in regards of  detection, response and threat intelligence

    • Intrusion offensives, detection and monitoring

    • Security automation and orchestration processes

    • Security Incident Response

    • Vulnerability assessments, web and infrastructure pentesting

    • Malware analysis and reverse engineering

    • Advanced digital forensics activities

    • Kill Chain detections

    • Tactics,Techniques and Processes behavior patterns

  • Demonstrated resilience, diplomacy, influence, relationship building, and problem solving skills in a variety of situation

  • Desirable certifications

    • SANS GIAC Auditor (GSNA) or equivalent

    • ISC2 Certified Information System Security Professional (CISSP) or equivalent

    • ISACA Certified Information System Manager (CISM) or equivalent

    • ISO 27001:2013 Lead Implementer/Auditor (PECB) or equivalent

    • ITILv3 certifications

    • Network security certifications (CCNA/CCNP/MSCP or equivalent)

  • You have a strong analytical mindset and good communication skills both verbal and in writing

  • You have a proactive attitude with an antenna for organizational needs

  • You can easily adapt to new demands and expectations in the position

  • You are ethical: honest, sincere and discreet

  • You are willing to consider alternative ideas and points of view

  • You can work independently, but you are also a team player

What do we offer you?
Working at Visma Idella means a lot of space to let your talent flourish, realize your ambitions and keep pushing your boundaries. We like to work with short lines of communication. Of course also to the Visma organization, of which we are proud to be a part of. You can learn a lot from your >200 colleagues, who are just as professional and ambitious as you are. 

In addition, you regularly follow training courses and internal knowledge sessions here to remain the best in your field. And do you have a good idea yourself? Do you see something that you think could be better? If you are enthusiastic and can provide a good substantiation, your initiative will be appreciated and rewarded. Our clubhouse in Amersfoort allows for face to face interaction, but we are also very experienced in working online with remotely positioned colleagues. About 20% of our colleagues are already located in one of the Visma nearshore countries. 

Do you have the Visma Idella mentality?
Are you enthusiastic about what you are good at and someone who challenges themselves and the organization to continuously improve? Do you not shy away from complex issues and are you ready to do the best work in your life? Do you also recognize yourself in the points mentioned? Then you have the Visma Idella mentality and we would like to meet you!

Share on:

Reference No.:

103805491

Region:

  • Crisana region
  • Maramures region
  • Bucovina region
  • Banat region
  • Oltenia region
  • Transilvania region
  • Moldova region
  • Muntena region
  • Dobrogea region

Application deadline:

31/12/2021

Expected Start Date:

01/01/2022

Location:

Iasi/Sibiu/Timisoara/remote

Contacts:

Nada Jigovan

Company homepage:

http://www.visma.com

Office address:

Piata Consiliul Europei, nr. 2, Centrul Comercial Iulius Mall, UBC3 300627 Timisoara