Details: Purpose of the position The purpose of this position is to support IS cybersecurity operations within Messer North America to ensure Messer is protected from current and evolving cybersecurity threats. The scope of this position includes incident response of cybersecurity incident, identity management, technical protection measures, monitoring tools, 3rd party providers/partners, and employee security communication/training/awareness/behavior. Principal responsibilities The principal responsibilities for this position include:
Utilize existing technology platforms to monitor security threats and incidents. Investigate on suspicious activities, gather evidence and document for traceability. Identify vulnerable assets (workstation, network device, IOT) and propose remediation actions or apply fix. Perform security assessment (penetration and vulnerability testing) and ensure all deficiencies are mitigated. Assist in redacting and reviewing security policies to improve Messer cybersecurity posture. Work with Core Infrastructure, Workplace, Network & Communications, and M365 & Azure teams to ensure best practices are in place for security (Least Privilege Access, Group Policies, Administrative access, etc.) Work with IS Business Services and Enterprise Application teams to ensure that all aspects of application operations and development meets required cybersecurity standards. Assist in reporting of IS security indicators for tracking and prioritization of future activities. Build automation playbook to reduce redundant activity and improve efficiency. Research security enhancements and make recommendations to management. Key interfaces Internal interfaces:
- Messer North America Business stakeholders, IS Organization, Service Manager, Application Managers, Project Managers
External interfaces:
- Vendors and Customers
- Cybersecurity authorities (CISA, FBI, DHS)
Required Competencies/behaviors
- Cross-Cultural Communication & Collaboration
- Customer Focus
- Functional & Technical Competence
Job Requirements Details: Required key skills (functional/technical)
Experience on the following solutions: Endpoint protection, firewalls, SIEM, CrowdStrike, Rapid 7, Windows and Linux operating systems, NAC, Radius, Email security, DLP, Privileged Access Management Understand concept of network switching/routing Knowledge on Cybersecurity Framework (NIST CSF) or similar Scripting (Python, PowerShell) Ability to effectively communicate with internal customers, external suppliers, and Messer North America Information Services teams IS Governance Methodology (ITIL) awareness Stay current on IT security trends and news Knowledge on OT and industrial Control systems is a plus Pay Range: Based on Experience