Information Security Officer

La Garanti BBVA Romania am creat un climat care inspiră colaborarea și comunicarea. Am  construit astfel o echipă unită și energică, care pune întotdeauna clientul pe primul loc. Susținem aspirațiile colegilor noștri și îi încurajăm să se perfecționeze continuu și să își urmeze pasiunile. Ca echipă, ne preocupă creșterea eficienței operaționale și îmbunătățirea constantă a serviciilor oferite clienților.

- Skilled and trained in operating consoles from vendors known vendors in cybersecurity (e.g. McAfee, Symantec, Forcepoint;
- Hands-on experience in managing anti-malware, web filtering, data loss prevention, IDS/IPS, log management, vulnerability scanners, both commercial and open-source;
- Experienced in information security incident response and digital forensics;
- Knowledge of international information security standards and national data protection regulations;
- Ability to adapt speaking to a non-technical listener and adequately explain IS concepts;
- Good team player and fast learner;
- Ability to cope well with stressful situations;
- Fluent in English;
- Great analytical and synthetic capabilities, able to manipulate large data using Excel or SQL tools;
- One industry certification preffered (such as Security+, SCCP, CEH, CISSP or vendor-specific certifications);
- Work experience in a similar position (minimum 2 years);
- University graduate in computer science.

- Performs operational information security activities such as monitoring of anti-malware and intrusion detection systems, log management application, spam/phishing filter, automated alerts and notifications;
- Resolves information security incidents and ensures all system requests and incidents are recorded, fixed and documented;
- Performs forensics and post-incident investigation;
- Develops, implements and monitors security operations, procedures and guidelines in compliance with the security regulations and standards;
- Provides expert advisory to IT management in the development, implementation and maintenance of an information security infrastructure;
- Monitors potential threats and vulnerabilities, learns about counter-offensive methods and develops plans to minimize risks on the IT infrastructure;
- Promotes the use of Information Security Policies and provides user awareness;
- Ensures that the security policies are enforced and performs periodic tests using adequate techniques;
- Receive and respond to incoming audit requests (acts as point of contact for internal and external audits) and monitors the closing of audit findings;
- Assesses and reviews the mandatory security requirements for contractors, third parties and their systems;
- Performs continuous self-education and is connected to the threat intelligence and peer forums.