back to list

• Security Incident & Vulnerability Management Lead
• Being part of an international company yet with local presence
• Build a safer digital society together with us
• Working as a Security Incident & Vulnerability Management Lead
• The Security Incident & Vulnerability Management Lead’s mission and objective will be to establish, maintain and orchestrate the Security Incident & Vulnerability Management processes across an Orange Cyberdefense business unit
• Security Incident Management
• Vulnerability Management
• Lead security incident and vulnerability management to enhance the value of the company and brand
• Lead vulnerability management to enhance the value of the company and brand through continuous improvement of Orange Cyberdefense’s internal and external cyber rating
• Manage the development and implementation of security policies, standards, instructions and guidelines in relation to the role
• First line response for all security incidents
• Maintain relationships with local law enforcement and other related government agencies
• Oversee internal incident response planning as well as the investigation of security breaches and assist with disciplinary and legal matters associated with such breaches as necessary
• Assist departments at Orange Cyberdefense in compliance and conformity questions regarding security incident and vulnerability management
• Participate in activities with counterparts at other companies within Orange Group (CERT)
• This role will provide direction and guidance to the Security Officers throughout the Orange Cyberdefense Group
• In common with all roles in OCD, this role must comply with the Information Security policies and procedures in place at the time, as specified
• Lead information security incident management
• Lead activities related to internal and external cyber rating improvements

What we expect of you

• The Security Incident & Vulnerability Management Lead will need to possess the following desirable skills and experience:
• CISM, masters degree or similar, or at least 2 years work experience including at least 1 year in the field; genuine hands-on experience with relevant approaches, standards, methods, frameworks in relation to this role
• Information security management
• extensive real-world management experience involving contact with senior management, departmental/corporate management, budgeting, strategic planning, management reporting and metrics, legal and regulatory compliance, formulation and management of incident management, vulnerability management etc
• extensive real-world experience of at least 1 years working in technical IT roles such as: network management, server management, desktop management or application development etc