*** Stay up to date with the GPC's latest opportunities ***  Upload your CV   Register   

Cybersecurity Architect [6151]

Client: EU Institution
Contract Type: Freelance
Duration: 220 days + extensions
Location: Warsaw, Poland
Clearance: UE/EU RESTRICTED

Profile domains: Cybersecurity, Security architecture, data protection, risk management, risk assessment

Knowledge and Skills:
[01] Cybersecurity recommendations and best practices
[02] Cybersecurity standards, methodologies and frameworks
[03] Cybersecurity-related requirements analysis
[04] Secure development lifecycle
[05] Security architecture reference models
[06] Cybersecurity-related technologies
[07] Cybersecurity controls and solutions
[08] Cybersecurity risks
[09] Cyber threats
[10] Cybersecurity trends
[11] Legal, regulatory and legislative compliance requirements, recommendations and best practices
[12] Legacy cybersecurity procedures
[13] Privacy-Enhancing Technologies (PET)
[14] Understanding of organisation’s mission and business objectives risks
[15] Knowledge of secure development lifecycle
[16] Knowledge of security architecture reference models and security solutions
[17] Knowledge of the latest technologies and solutions
[18] Knowledge of the latest cybersecurity trends
Skills:
[19] Conduct user and business requirements analysis
[20] Draw architectural and functional specifications
[21] Design cybersecurity systems and architectures based on security and privacy by design and by defaults principles
[22] Guide and communicate with implementers and IT personnel
[23] Report, communicate and present to stakeholders
[24] Propose cybersecurity architectures based on stakeholder’s needs and budget
[25] Select appropriate specifications, procedures, and controls (e.g. on Cryptographic models, access control techniques)
[26] Build resilience against points of failure across the architecture
[27] Provide technological design leadership
[28] Lead the integration of security solution


Required cerificates:
At least 4 certification among:
[1] CISSP (Certified Information Systems Security Professional)
[2] CISA (Certified Information Systems Auditor)
[3] CISM (Certified Information Security Manager)
[4] SABSA Chartered Security Architect - Foundation Certificate (SCF)
[5] TOGAF Foundation
[6] CNDA (EC-Council Certified Network Defence Architect)
[7] CISSP-ISSAP ((ISC)2 Certified Information Systems Security Architecture Professional)
[8] CGEIT (ISACA Certified in the Governance of Enterprise IT)
[9] CRISC (ISACA Certified in Risk and Information Systems Control)
[10] SCPA (SABSA Certified Security Architecture Design & Development Practitioner)
[11] SCMA (SABSA Certified Security Architecture Design & Development Specialist)
[12] TOGAF Certified
[13] GSNA (GIAC Certified Systems and Network Auditor)
[14] GCCC (GIAC Certified Critical Controls)
[15] GPPA (GIAC Certified Perimeter Protection Analyst)
or equivalent certification recognized internationally (subject to acceptance as a valid credential by the Contracting EU-I)

Tasks and responsibilities: - Design, and propose secure architecture to implement the organisation’s strategy
- Develop organisation’s cybersecurity architecture to address security and privacy requirements
- Produce architectural documentation and specifications
- Present high-level security architecture to stakeholders
- Establish a secure environment during the development life-cycle of systems, service, and/or products
- Lead the development, integration and maintenance of cybersecurity components ensuring the cybersecurity specifications are met
- Analyse and evaluate the cybersecurity of the organisation’s architecture
- Assure the security of the solution architectures through security reviews
- Collaborate with key security personnel and other teams in applying the security principles in the architecture
- Evaluate the impact of cybersecurity solutions on the design and performance of the organisation’s architecture
- Adapt the organisation’s security architecture to emerging threats
- Asses the implemented architecture to maintain an appropriate level of security
- Perform market evaluation to identify appropriate solutions to business requirements
- Evaluate security solutions through Proof of concepts
- Design solutions including service aspects (cf. ITIL Service design activities)
- Contribute to the definition of the security architectural blueprint
- Integrate new solutions with existing framework based on a security architectural blueprint
- Transition solutions to teams in charge of daily operations
- Balances technological opportunities with business processes requirements
- Maintains a holistic view of the organisation’s strategy, processes, information and ICT assets
- Links the business mission, strategy and processes to the ICT and Cyber Defence strategies
- Align Cyber Security strategy and planning with the organisation’s business goals
- Streamline business processes, functions, procedures and workflows and apply a consistent implementation approach
- Recommend resolutions and improvements
- Ensures, that technical solutions, procedures and models for development are up-to-date and comply with standards
- Watches technology development and integrates into new solutions

Contract
Luxembourg
Negotiable
GPC006151
Emilio Perri
emilio@gpc.work
02031545027