je.st

Home › security

Tag: security

Information Security Consultant

2021-10-08 12:12:55| Space-careers.com Jobs RSS

For one of the most famous and exciting European space projects, you will have the opportunity to support the client in defining and maintaining technical specifications for cyber security and related processes. This position is based in the Headquarters of this international institution, in the beautiful city of Prague, Czeh Republic. Tasks and Activities The scope of work will include Write cyber security policies suitable to the Galileo environment. Review cyber security policies in place. Suggest improvements to the current cyber security policies. Write policies and security requirements in English, suitable to the Galileo environment. Write securityrelated technical documentation presentations, whitepapers, technical notes, manuals, analyses, specifications, requirements etc.. Provide training to other members of the cyber team and colleagues from other departments. Manage cyber security requirements in the identified requirements management systems i.e. DOORS. Maintain traceability between Mission, SystemService requirements in DOORS. Maintain traceability between SystemService and other sets of identified requirements. Perform a gap analysis for EUSPA cyber security requirements, across existing EUSPA contracts and procurements e.g. GSC, GSOp, RLSP, GRON. Maintain applicability matrix for EUSPA cyber security requirements, across contracts and procurements. Support the optimization i.e. removing any duplications of the requirements between existing security requirements e.g. EE SREQ and new cybersecurity requirements. Support the flow down of EUSPA cyber security requirements in the relevant contracts and procurements e.g. GSOP, GSC, RLSP, Sites. Support the flow down of EUSPA cyber security requirements in coming activities e.g. HA. Support the assessment and lifecycle management of cyber RFWs and RFDs by relevant contracts and procurements. Definition of a security risk profiling methodology. Production of security risk profile for relevant contracts. Production of Matrix of sensitivity for EUSPA elements. Skills and Experience The following skills and experience are mandatory University Degree in Cybersecurity, Computer Science, Engineering or Management Information Systems. At least 3 years of professional experience in conformance testing activities related to cyber security. Experience in security risk management. Deep understanding of compliance requirements, standards, and guidelines e.g. ISO, NIST, SANS, COBIT, ITIL, CC. Experience with the standard MS Office Suite, Visio, Project, SharePoint and IBM DOORS. Strong commitment on meeting deadlines, working in complex environments and managing contingencies. Ability to work in a team, with a proactive attitude towards problem solving. Excellent command of the English language, both written and spoken i.e. Cl level of CERFL. Eligibility for a Personal Security Clearance at SECRET UEEU SECRET level, before the moment of entering into service. The following skills and experience are highly desirable First experience in a Space project and ideally in Navigation. Experience in ISO27001. CISM or CISSP certification, and knowledge of NIST. Experience in requirements elicitation. Experience in the assessment and management of supply chain security risks, and knowledge of related standards. How to Apply Looking to take your career to the next level? Interested applicants should submit their CV and Cover Letter to RHEAs Recruitment team at careersrheagroup.com no later than 30102021.

Tags: information security consultant information security

RodeoTV strengthens security offering with BuyDRM's KeyOS

2021-10-07 10:02:23| Digital TV News

October 6, 2021 RodeoTV is now offering studio-grade security for video content with BuyDRM's KeyOS MultiKey Multi-DRM Service. RodeoTV provides solutions for clients looking to deliver Live Linear Video, VOD and Digital Signage.

Tags: security offering strengthens offering security

How to Drive Continuous Innovation with Rackspace Elastic Engineering for Security

2021-09-30 17:54:30| The Webmail Blog

How to Drive Continuous Innovation with Rackspace Elastic Engineering for Security chri6103 Thu, 09/30/2021 - 10:54 How to Drive Continuous Innovation with Rackspace Elastic Engineering for Security September 30, 2021 by Gary Alterson, Vice President, Security Services, Rackspace Technology New ideas, processes and services can only be implemented if you prioritize innovation. Unfortunately, ever-evolving security challenges and the ongoing shortage of cybersecurity talent present a very real challenge when leveraging cloud technology to implement new service models, improve customer engagement or increase operational efficiency. To confidently innovate at pace, you still must secure your organization and address compliance needs. But the current staffing shortage is having an impact. According to a CyberEdge study, 93% of organizations believe they will benefit from additional staffing in key security functions. Rackspace Elastic Engineering for Security helps you fill those staffing gaps with on-demand access to a team of security specialists, which we refer to as a pod, to help you move the needle on cloud security and compliance projects. To help you shape decisions through input from multiple disciplines, your pod would include an engagement manager, a lead architect, a security engineer, and a compliance expert, along with additional access to security architects, security analysts and penetration testers, when you need them. The pod works alongside your team in an agile, sprint-based model providing continuity and sharing knowledge. Your pod can provide security guidance related to your cloud migration, applications or data in the cloud. After all, cloud security expertise is essential as you look to harness the capabilities of the modern cloud and transition to cloud native. Its a cloud-first world with organizations looking to unlock the potential of cloud to reduce operating costs, build new revenue streams or for agile working practices. Your Elastic Engineering for Security pod can help you enhance your defenses against cyberthreats by incorporating security automation into cloud native tooling like AWS GuardDuty and Azure Security Center, or resolve cloud misconfigurations before they impact your business. And of course, we also cover security event monitoring to help ensure your environment is kept safe. Whether you have a security team of one, ten, or hundreds of staffers, or none at all we can help by delivering and end-to-end security solutions. Onboarding and configuration support, ongoing management and assistance with tuning, and compliance support are all covered by Rackspace Elastic Engineering for Security. The possibilities are endless when you have the right team of security and compliance experts working with you, so lets talk about some of the larger benefits were already delivering for our customers. Addressing compliance in AWS We have a software-as-a-service (SaaS) customer that recently won a contract with a healthcare provider. Our customer didnt have any internal security capabilities, but needed to meet HIPAA compliance and security standards in its AWS environment. Now, with Rackspace Elastic Engineering for Security, the organization has a pod managing its security program. A lead architect, a security analyst and a compliance expert are providing security architecture and engineering expertise. The pod analyzed the AWS security posture, provided vulnerability assessments, and then executed an action plan that involved reconfiguring, or hardening, the AWS infrastructure to prevent security breaches. The HIPAA requirements meant vulnerability management and AWS configuration are critical pieces of this security solution. The pod also implemented security automation improvements in the organizations detection and response technology to help remediate threats. With Rackspace Elastic Engineering for Security, this healthcare organization has end-to-end support for its changing security and compliance needs. Supporting cloud-native security tools Our second example is a financial services customer that needed help scaling its security team and applying automation to identify Azure cloud misconfigurations. Rackspace Elastic Engineering for Security and our Advanced Monitoring & Resolution for Security services now deliver Tier-1 support, automated fixes for common security events, and monitoring of Azure cloud-native security tools. In addition, our customer can escalate complex actions and remediations to its pod when needed. Implementing security at the cloud edge Rackspace Elastic Engineering for Security can also support your cloud edge application security solutions. For example, your pod could fine-tune your web application firewall (WAF) policies, which are notoriously tedious. Or you can delegate the management of your web application security tools including DDoS protection, bot protection and assistance with PCI compliance to your pod. Let Rackspace Elastic Engineering for Security help your team implement a cutting-edge security program that focuses on continuous improvement and is backed by deep expertise to help defend against cyberattacks. Learn more about Rackspace Elastic Engineering for Security today. Recent Posts How to Drive Continuous Innovation with Rackspace Elastic Engineering for Security September 30th, 2021 How to escape hyperscaler transfer fees September 30th, 2021

Tags: security drive engineering continuous

US security agencies split on sanctions against Honor - report

2021-09-21 08:48:00| Telecompaper Headlines

(Telecompaper) US security agencies are divided over whether to place Honor, the smartphone maker spun off from Huawei, on the export blacklist, the Washington Post reports...

Tags: report security honor agencies