CSIRT Manager

We open up a world of digital opportunities so people live better and work smarter.

Tasks & Responsibilities

• Define both tactical as strategic roadmaps for Proximus Cyber Defence capabilities.
• Build and maintain Cyber Security Intelligence for the entire Proximus Group by gathering, filtering, analysing and disseminate cyber security related information (including modus operandi) collected from wide set of sources, including public information, industry information sharing groups as well as privileged sources.
• Coordinate group-wide incident response throughout different operational teams and higher (crisis) management
• Serve as single point of contact for coordination during crisis with judicial authorities, law enforcement and peer telecom operators worldwide.  
• Manage the team members in their incident response capabilities:
• Driving the tuning SIEM according to business criticality and incident cases, cyber resiliency exercises as well as benchmarking these practices against peers or industry/de facto standards.  
• Support the Cyber DefenseCenter for complex incident escalations as an investigative expert team.  
• Serve as ultimate escalation point for cyber security related incidents.
• Communication to stakeholders for on-going incidents.
• Drive preventive controls by initiating cross-domain improvements throughout the Proximus Group, and assisting the Information Security Governance team in implementing them
• Maintain active collaboration with different business units (egEBU) in order to demonstrate maturity in Cyber Security Intelligence and Incident Response to both internal and external stakeholders (eg corporate customers).
• Keep close contact with suppliers in order to stay aware of their roadmaps, product evolutions and strategies.
• Develop and deliver training programs in support of cyber resilience, reaction and recovery towards IT and operational groups.
• You actively participate in regular awareness campaigns, help to develop an awareness strategy.

Profile:

• Minimum 10 years of experience in Information Security area (CISSP, CISM or similar is required)
• Fluent in NL/EN/FR
• Experience with team leadership/management.
• You have a solid international social network with peers in other operators, governmental and regulatory instances.
• You are an expert in security vulnerabilities/threats and related attacks
• Demonstrated experience in handling complex cyber incidents and response in similar critical environments.
• Exposure to internal C-level, external contacts at the senior level (such as industry wide information sharing groups or major customers).
• Experience in presenting for large audience (egconference).
• You show integrity & trust while managing confidential information

At Proximus you have the possibility to shape your own future and the digital future of our customers. We offer you:

• Our digital workplace, which assure you a better work-life balance
• A nice and varied salary package including insurance, a mobility plan of your choice, telecom and other benefits.
• The opportunity to build your own career and your development thanks to a continuous learning environment and the exhaustive offer of our Proximus Corporate University.