Information Security Analyst

Information Security Analyst

Do you like defending computer systems and keep attackers out of the company environments? Do you like to being a superhero, fight crime and solve puzzles?

Then this job is for you!

Visma’s Cyber Incident Response Team (CSIRT) is looking for passionate and highly skilled Information Security Analysts in conducting security incident response, adversary hunting, threat intelligence and digital forensics.

You will be a member of Security Department, where your skills and contributions to manage Visma security will be very visible. You must love to innovate, analyze data, improve detection and to help team
members and receive help from them. The team is international so you will use English both written and orally.

If the descriptions above fit you, and you can check several of the following bullets, Visma IT & Communications can offer you a very interesting work and competitive terms.

The current position is located in Sibiu or Timisoara, Romania

Your skills:

*Master’s or Bachelor's degree in related fields (Engineering, Computer Science, Mathematics), preferably in Information Security with an overall minimum of 5 years of relevant experience

*In depth knowledge of processes, research and performance analysis capabilities

*Negotiation capabilities and problem solving mindset

*Understanding the IT Service industry as well as the relevant marketplace

*Effectively cope with change; comfortably adjust to alterations in work activities; able to decide and act with limited information; effectively handle risk and uncertainty in ambiguous situations

*Demonstrated resilience, diplomacy, influence, relationship building, and problem solving skills in a variety of situations

*Highly effective written and oral communication skills, excellent interpersonal skills and experience dealing effectively with a wide range of people

*Fluency in Business English is required

*Customer oriented behavior

*Fast learner - research capabilities for obtaining required information.

Relevant experience in:

*Operating systems and computer networks administration

*Knowledge of technical infrastructure, networks, databases and systems in relation to information security and risk management

*Experience in web application security

*Experience in security engineering, computer and network security, authentication, security protocols and applied cryptography

*Experience in monitoring networks using a variety of tools to identify potential intrusions

*Skills in security forensics activities, malware reverse engineering and crypt analysis

*Skills in scripting and programming languages

*In-depth technical knowledge within information security areas:

*Intrusion detection and monitoring

*Security automation

*Security Incident Response

*Vulnerability assessments, web and infrastructure pen-testing

*Experience in implementing security solutions, vulnerability testing, risk analyses and security assessments is an advantage

Tasks:

*Would like to work primarily with information security technologies and processes

*Conduct monitoring, operations and control tasks in regards to Security Operations Center (SOC) activities

*Contributes in security incident management in regards to Security Incident Response Team (SIRT) activities

*Performs vulnerability testing, risk analyses and security assessments

*Investigate intrusion incidents, conduct forensic investigations and mount incident responses; Anticipate security alerts, incidents and disasters

*Finds and documents new ways to solve existing production security issues

*Develop automation processes to handle SOC and SIRT activities

*Assist in activities related to information security management and ISMS operations and improvement processes. Assist with follow up of corrective measures

*Deliver technical reports and formal papers on SOC, SIRT and forensics activities

*Contributes to security best practices, ISO compliance and new security standards.

*Assists in security training and awareness activities

*Contributes to security programs for the organization

*Attends conferences and trainings as required to maintain proficiency

*Actively contribute to further developing of the Security Department in cooperation with the Team Manager and Department Manager

What Visma offers

We offer an exciting position in an international working environment where you will be part of a dynamic and highly skilled international team. You will have good opportunities for career development through
internal training and diverse work assignments in a prominent international company. We offer competitive terms and conditions.

About the company

Visma

Visma offers software and services that simplify and digitise core business processes in the private and public sector. The group operates across the entire Nordic region along with Benelux, Central and Eastern
Europe. With over 8k employees, more than 800k customers and net revenue of NOKmillion in, Visma is one of Europe’s leading software companies. Visit .

Visma IT

IT service delivery in the digital age means rapid growth and major changes as emerging technologies introduce paradigm shifts. Cloud service delivery is the next major driver. Success in changing environments requires the ability to innovate, design and deliver while providing steady and secure IT deliveries.

In addition to providing IT services to our customer portfolio, Visma IT provides all Visma business units with the tools and infrastructure they need to deliver state-of-the-art solutions and services to their
customers. By giving employees access to the right technology, we ensure quality at all stages of the customer journey. We also provide data storage in on-premise environments, in hosting environments and in the cloud, both public and private.

Our international teams base their work on an extensive knowledge of IT service delivery in both on-premise environments and the public and private cloud. Security is our number one priority, and to ensure that we comply with all laws and regulations, we are ISO certified in the areas of security, quality, project management and IT service delivery.