Security Program Officer

Job Description

Stefanini EMEA is seeking a new colleague for the Security Program Officer role. Our new colleague will be part of Stefanini's EMEA Cyber Security Services Tower within the Modern Enterprise Services (M.E.S) Division.

Responsibilities:

• Leadership and management of information security incidents & processes with involved SME's.
• Ensuring proper information security incident documentation, procedures & processes and hand over to additional Cyber Security Specialists or/and SOC team members.
• Decision taking on the information security incident's severity, category alongside security service assessment for quality & metrics.
• Ensure the effective delivery of cyber security services, tasks, responsibilities and objectives.
• Maximize value and minimize friction when governing the cyber security program which includes people, processes & technologies.
• Improve and mature the internal processes, manage deliverables and help the team to complete the project & service objectives.
• Fulfill the client's requirements per cyber security contract and to maintain positive results per security service offered.
• Coordination of deliverable risks & recommend mitigations, workaround or/and remediation strategy.
• Defining and maintaining the current cyber security services delivered by security specialists & engineers.
• Cyber Security Governance (monthly service reports, metrics monitoring, escalation-handling, quality control, Lead meetings & communication with customers).
• Main point of contact for some cyber security services & projects.
• Act as the bridge between the SOC team and the customer's technical team, ensuring smooth communication.
• Understand and translate the technical requirements of the assigned accounts (customers) to the SOC team and lead weekly/monthly technical meetings.
• Coordinate with various teams to schedule, plan, and deliver technical services, technical recommendations, and team support (including KBAs, SOPs, and other required documentation).
• Manage customer expectations while establishing and maintaining clear accountabilities.
• Effectively address bottlenecks and anticipate trade-offs to balance security and business needs against team or technology constraints.
• Manages Issues and Risks across program helping to remove barriers.
• Remove impediments for teams and shields teams from external interruptions.
• Issue tracking and action planning / ownership.
• Be a bridge and coordinate handovers from security project implementation (BUILD) to Security Services (RUN).
• Work effectively with peers, other departments, and managers.
• Drive innovation and stay current with industry trends, emerging technologies, and best-in-class practices related to Cyber Security.
• Develop and maintain business continuity plans for existing security services.

Job Requirements:

• Proven experience in cyber security incident management (including the resolution of customer escalations, incident handling, and response) and cyber security services governance.
• Familiarity with current cyber security technologies and best practices.
• Security tools/products experience such as SIEM, AV, EDR, FW, Proxy, Emails Security.
• Knowledge of common security frameworks, standards, regulations and compliances such as ISO/IEC 2700x, ITIL, COBIT, NIST, NIS 2, DORA, PCI/DSS etc.
• Ability to understand technical and business aspects of IT risk, and to communicate those risks to management, business and technical units so that the organization can make informed decisions regarding appropriate levels of information security control.
• Strong presentation and collaboration skills.
• Excellent written and verbal communication skills in English.
• Ability to manage multiple priorities and meet deadlines.
• High degree of initiative, dependability and ability to work with little supervision.
• Relevant certifications in Cyber Security (e.g., CISSP, CISM, etc.) are preferred.
• Very proficient in MS tools: Excel, PowerPoint, Visio, Project.

What's next:

It's best to apply today, because job postings can be taken down and we wouldn't want you to miss this opportunity.

In case you will need further information, just send us a message at recruitmentEMEA@stefanini.com and we'll be happy to assist!

The preceding job description had been designed to indicate the general nature and level of work performed by employees within this classification. It is not designed to contain or be interpreted as a comprehensive inventory of all duties and responsibilities required of employees assigned to this job.

Diversity & Inclusion

Here at the Stefanini Group, we value plurality and equity, regardless of race, sexual orientation, disability, age, ancestry, religion, gender, and nationality. We understand and encourage the importance of being you!

About us

We are a Brazilian company with over 35 years of experience in delivering IT services worldwide, ranging from IT outsourcing to application development or IT staffing. We have a direct presence in 41 countries, through our 70 offices located throughout the world. We have managed to become the preferred partner of many small-to-midsize local and regional companies as well. Most of our clients come from industries such as financial services, manufacturing, telecommunications, chemical, services, technology, public sector and utilities.

Stefanini has career opportunities locally and around the world for professionals interested in a vibrant, passionate, team-oriented workplace. If you are a customer-centric person with a "get it done" attitude, come over for coffee and a talk on your future career with us! Learn more about us on www.stefanini.com and join us on LinkedIn, Facebook and Instagram where we regularly post insights from our colleagues.