We are currently looking for an IT Security Testing Specialist to join our growing client in Luxembourg. Project Define security configuration and operations standards for security systems and applications, including policy assessment and compliance tools, network security appliances and host-based security systems; Develop and validate baseline security configurations for operating systems, applications and networking and telecommunications equipment; Perform internal and external technical control and vulnerability assessments to identify control weaknesses and assess the effectiveness of existing controls and recommend remedial action; Perform source code reviews; Perform network and application penetration testing (Black box, Grey box and White box); Define detailed security architecture; Perform technical security audits and ethical hacking; Perform log analysis and security monitoring; Perform IT infrastructure / Application Security configuration reviews; Design and implement technical security mechanisms and technologies; Design and develop technical security standards and procedures; Profile University degree is mandatory and a professional experience in the field of at least 10 years. Security best practice guidelines (ISO 27001, NIST, SANS Top 20 OWASP, etc.); Good practice in the secure configuration of servers, network devices and applications; Networking protocols and application communications; Network analysis tools; Securing Unix and Windows operating systems; Securing Middleware and applications; Network penetration testing; Web application penetration testing; Vulnerability assessments; Forensic image collection and analysis; Manage / deploy the following security technologies : Firewalls; IDS / IPS - Intrusion detection / Prevention Systems, SIEM -Security information and event management; IAM - Identity and access management; APT - Advanced Persistent threat detection; DLP - Data loss prevention; VA - Vulnerability Analysis and mitigation; PKI - Public key infrastructure; Virtual environments; EndPoint security; Mobile security; Communications and data encryption ; Remote access methods; Backup and disaster recovery methodologies; Patch management technologies and processes; Wireless protocols and services; Open Web Application Security Protocol (OWASP) and secure software development standards; Perform security code reviews; Expected to possess one or more of the following qualifications : Certified Information Systems Security Professional with Information Systems Security Architecture Professional concentration (CISSP-ISSAP); Certified Information Security Manager (CISM); Certified Information Systems Auditor (CISA); OSCP, OSCE, GPEN, CEH, CCNA, CCNP. Fluency in English. Offer We offer you an attractive salary package, extra-legal benefits such as meal vouchers, etc. Your office will be in Luxembourg. The work schedule is full-time. Freelancer is also welcome.
It • Luxembourg, Luxembourg