Security Officer Blue

Security Officer Blue

For my client, a vendor to a bank, I am recruiting Security Officer Blue

How You Will Contribute:

• Act to enforce security and information protection policies, in accordance with the provisions of the Bank Articles of Incorporation and specific regulations;
• Identify, detect, analyse, and report information security threats and potential threats from various sources, using various correlation techniques to categorize them. Subsequently, propose measures to minimize the impact;
• Analyse and investigate security incidents assigned directly for resolution or posted in the   Manage and resolve USD security tickets, ensuring timely approvals, validations, and follow‑up actions.
• Review and approve installation requests for new applications according to security policies and compliance standards.
• Evaluate, approve, and track new firewall rule requests, ensuring alignment with network security best practices.
• Understand the risks in AI/ML systems and ability to detect AI‑driven fraud, deepfakes, and automated phishing.
• Design, configure, and maintain Data Loss Prevention (DLP) rules to safeguard sensitive information and prevent data leakage.
• Continuously optimize DLP policies based on incident trends, business needs, and risk assessments.
• Monitor, evaluate, and report on the evolution of threats and vulnerabilities of IT systems;
• Administer and maintain bank’s platforms used for vulnerability scanning and risk assessment.
• Perform regular vulnerability scans, analyze findings, prioritize risks, and coordinate remediation with technical teams.
• Drive the end‑to‑end vulnerability management lifecycle—from discovery and reporting to follow‑up and closure with system owners.
• Detect sophisticated attacks (e.g., lateral movement, privilege escalation).
• Plan, submit for approval, and execute plans for periodic checks of vulnerability scanning systems and solutions according to the Bank’s internal standards;
• Collaborate with Red Team and support adversarial simulations (ransomware readiness, etc.).
• Coordinate and execute periodic “Run the Bank” pentesting activities to identify security gaps across systems and applications and collaborate with internal teams and external partners to validate fixes, retest vulnerabilities, and support secure deployments.
• Use your ability to create automation scripts (Python, PowerShell) for: log enrichment, vulnerability scanning, phishing‑email triage workflows
• Ensure the provision of information and the introduction of the concept of security
• Analyse confidentiality agreements concluded with third parties and monitor compliance with internal regulations;
• Execute work related to responding to internal and external audit missions;
• Participate in ensuring the security and protection of classified information;

What will help you be successful:

• Education: Bachelor’s Degree or higher;
• Preferred, but not mandatory, certifications: CEH, SCCP, other specific IT and IT security technology courses and certifications;
• Minimum 3 years’ experience in the field of Information Security;
• Hands-on expertise with vulnerability scanning tools, DLP solutions
• Solid understanding of:
  • Network security concepts (firewalls, ports, protocols)
  • Vulnerability scanning methodologies
  • Common vulnerabilities (CVEs, CVSS, OWASP Top 10)
• Experience reviewing and validating security-related change requests (e.g., firewall rules, installations).
• Familiarity with penetration testing workflows and remediation tracking.
• Strong analytical skills and ability to interpret technical security reports.
• Excellent communication skills with the ability to interact with technical and non‑technical stakeholders.
• English language proficiency.

Hybrid 3 days at the office, district 6, 2 days at home,