ICT Security Analyst

Job Description

Date: Jun 11, 2019

At Ericsson, we give our employees the freedom to think big. Your ideas and innovations can turn into achievements that impact society and change the world. Are you ready to be a change-maker?

Learn what makes YOU + Ericsson a powerful combination. Join us today.

 

About Us

 

We are one of the leading providers of Information and Communication Technology (ICT) to service providers, with about 40% of the world’s mobile traffic carried through our networks. We enable the full value of connectivity by creating game-changing technology and services that are easy to use, adopt and scale, making our customers successful in a fully connected world.

Together, in Romania we create a culture of innovation, constantly transforming to find new ways of working. Opened in 2007, the Global Site in Bucharest is one in only four all over the world, the only one situated in Europe and a vital component in Ericsson’s global services organization. The Romanian site currently counts on a team of 1,900 strong professionals and enthusiastic young specialists and is developing constantly to meet customer needs.

 

Position Purpose

 

 We are now looking for an Information and Communication Technology (ICT) NAC, LAR, SkyHigh, DNS safeguard & USB control Security Analysts.
In this role, you will ensure proper protection of information assets, accessed through the Ericsson IT environment. You will be a key player by providing IT security operations, expertise, support and solutions, based on the IT Security requirements and enabling compliance with applicable internal /external requirements, laws, regulations and standards.

 

Main accountabilities – you will:

Local Admin Rights (LAR):

  • Assess the threat posed by discovered applications within Ericsson client landscape
  • Determine the business use of discovered applications and recommend existing, approved, alternative applications
  • Classifications of applications into the functional areas, e.g. Games, Cloud Sharing, Toolbars
  • Recommend applications for blocking that have no valid business use
  • Research, and validate exemption requests
  • Operate the daily operation for this service

SkyHigh:

  • Assess the threat posed by discovered website within Ericsson client landscape
  • Determine business use of discovered websites and recommend existing, approved, alternative applications if any
  • Recommend web/cloud providers for blocking that have no valid business use
  • Research, and validate exemption requests
  • Operate the daily operation for this service 

DNS Safeguard (Umbrella):

  • Manage the blocking of not aloud domains
  • Manage the various landing pages based on the category of not aloud web services
  • Manage the TLS certificates for landing pages
  • Research, and validate the exemption request
  • Operate the daily operation for this service

USB / mass storage blocking:

  • Operate the daily operation for this service

Technical/Soft Skills

 

Competence:

 

  • Great team player in order to support the major transformation in the way Ericsson works with Cybersecurity
  • Self-driven, result-oriented, act proactively
  • Ability to build up a structure approach in driving change within and outside the own unit
  • Deep knowledge of IT with focus on Cybersecurity
  • Thorough understanding of the technology shift driving the digital transformation
  • Track record of delivering quick wins and long-term improvements
  • Excellent interpersonal skills and strong communication capabilities
  • Natural curiosity on how IT and threat landscape evolve

 

Education:

 

  • University degree in the field of IT and Cybersecurity or Long (+5 year) documented experience in the field of IT and Cybersecurity
  • You will actively and reactively ensure availability of IT security information, support and expertise
  • You will assume ownership of IT Security products, services and/or solutions, including overall strategy and roadmap for area of responsibility
  • You will handle demands, order requests and internal/external requirements, safeguarding I security services, products and architecture
  • Perform IT security monitoring and testing
  • You will contribute to internal and external IT security assessments or audits
  • Run IT security incidents in accordance with agreed and established process
  • And you will establish and leverage interfaces to relevant internal or external functions and experts
     

Key Qualifications:

  • Education: MSC, MBA or equivalent experience
  • Minimum years of experience: Relevant years of skill with IT Security design and architecture which include solution architecture work to identify technical vulnerabilities and possible mitigations to them
  • Communication and people skills, as the role involves extensive interaction with internal and external partners
  • Analytical skill 
  • Experience with regulatory requirements such as e.g. SOX, information security or IT security standards, Ericsson steering document
  • In-depth and working knowledge of ISO 27002 controls and how they should be implemented to secure Ericsson’s information technology environments

 

What we offer

 

  • We will value your competences
  • You will work in a dynamic company along with the smartest people in the industry
  • You will benefit from a wide range of learning and transfer knowledge from/to your colleagues
  • You will have access to latest technology and support to showcase your bright ideas
  • You will enjoy Ericsson’s ways of working that value the importance of work life balance
  • Benefits package: including premium healthcare & gym subscriptions
  • You will be part of an active community via Brand Ambassadors, CSR Activities, Sports Teams etc.

 

*LI-POST

#LuchianaBeznoiu

 

Ericsson provides equal employment opportunities (EEO) to all employees and applicants for employment without regard to race, color, religion, sex, sexual orientation, marital status, pregnancy, parental status, national origin, ethnic background, age, disability, political opinion, social status, veteran status, union membership or genetics.

Ericsson complies with applicable country, state and all local laws governing nondiscrimination in employment in every location across the world in which the company has facilities. In addition, Ericsson supports the UN Guiding Principles for Business and Human Rights and the United Nations Global Compact.

This policy applies to all terms and conditions of employment, including recruiting, hiring, placement, promotion, termination, layoff, recall, transfer, leaves of absence, compensation, training and development.

Ericsson expressly prohibits any form of workplace harassment based on race, color, religion, sex, sexual orientation, marital status, pregnancy, parental status, national origin, ethnic background, age, disability, political opinion, social status, veteran status, union membership or genetic information.

 

Primary country and city: Romania (RO) || || Bucharest || IT

Req ID: 280438