Global IT Team Lead and Security Architect Budapest

Global IT Team Lead and Security Architect
Budapest
Budapest, Hungary

Cégleírás / Organisation/Department

The world’s largest humanitarian organization, with a network of 192-member National Societies. The overall aim of the organization is “to inspire, encourage, facilitate, and promote at all times all forms of humanitarian activities by National Societies with a view to preventing and alleviating human suffering and thereby contributing to the maintenance and promotion of human dignity and peace in the world. ” The organization works to meet the needs and improve the lives of vulnerable people before, during and after disasters, health emergencies and other crises.

Pozíció leírása / Job description

The position holder specializes in leading the design, optimization, and maintenance of Information  Systems infrastructures, security services, and cloud platforms for an optimal and cost-effective  services and systems availability, security and scalability to support the global organization critical  business functions and end-user services. This includes services in IT eecurity, networking, data  centre, messaging and cloud management, and all underlying hardware for the WinTel server  architecture.  

The job purpose is to:  

• Lead, manage and coach the Infrastructure support and Security Operation unit.  
• Deliver high-quality IT infrastructure support and Informational Security services to the Organization in  line with Enterprise Architecture and ITD standards and policies.  
• Act as subject matter expert in the area of Information Security, Server technology, and  management – using the WinTel platform, including expertise on Server Hardware, Windows  Server software, Storage technologies, Networking, cloud platforms (SaaS, PaaS, IaaS), and  security solutions; 
• Act as a focal point, handle and manage escalation process for issues with systems and services  within the scope of IT infrastructure support and Security Operation services.
• Guarantee data and information security, availability, and integrity through strong operational  competencies using the ITIL and other applicable frameworks.  
• Support Enterprise Architecture function by participating in the design and implementation of  global information security programs, developing a security maturity model, and ensuring  compliance of information systems.  
• Act as an SME, and take on other supporting roles and responsibilities as required to contribute  to the scoping, design, and implementation of projects affecting the Infrastructure and  CyberSecurtiy domains.  
• Build up, stimulate and maintain respectful business relations with the providers and suppliers  for the services in the unit's scope.  
• Develop and implement and support IT standards, processes, and policies with global scope,   training materials, and operational procedures to achieve efficiency, quality output, and  uniformity of performance to the various organizational and National Society stakeholders.  

Elvárások / Requirements

Education 

• Engineering degree in computer sciences discipline or equivalent experience • ITIL certification or equivalent experience and proven track record of ITIL procedures use in  an enterprise environment 
• Microsoft Certified Solutions Associate or Engineer (MCSA/MCSE) – Server and Cloud  Infrastructure are required.  
• Information Systems Security certificate or willingness to acquire those deemed necessary.

Experience 

• Minimum 10 years of professional experience in the administration, setup,   maintenance, and management of data centers 
• Minimum 10 years of professional experience in the administration, setup,   maintenance, and management of Windows Servers, including failover clustering • Minimum 5 years of experience in the architecture and implementation of robust,   highly-available, and secure information systems, tools, processes.  
• Minimum 5 years of professional experience in managing enterprise-grade firewall  and/or IDS/IPS systems. Knowledge of and ability to effectively troubleshoot issues on  protocol layers is a must. Experience with SD-WAN and APM is an advantage.  
• Minimum 3 years of professional experience in operational maintenance and  configuration of hybrid cloud infrastructure. (O365, AzureAD, AzureAD Connect, Web  Application Proxy…etc. ) 
• Understanding networking concepts, topologies, subnetting, and protocols: OSI,   TCP/UDP, CIDR/VLSM, NAT/PAT, L2TP/IPSEC, BGP/OSPF, VRRP is a must.  
• Experience in conducting ethical hacking activities and other simulated cyber-attacks,   performing risks and vulnerability assessments.  
• Active and hands-on experience in incident hunting using Microsoft-provided on premises and cloud-based platforms and services and/or well-known third-party  applications.  
• Experience in and proven track record of business account management and  procurement activities in particular to supplier selection processes (RFP/RFI), contract  negotiations, service delivery supervision, invoice approval, and settlement of billing  disputes.  
• Experience in the development, implementation, and operative management of  CyberSecurity functions (CSIRT/SOC/SecOps/IDR/DR) and services.  
• Experience in service delivery management and reporting tools 
• Experience in managing teams in a supervisory role.  

Preferred 

• Experience with the implementation, configuration, custom dashboard development,   and automation of SIEM systems and alerts.  

Knowledge and Skills 

• Excellent knowledge and proven experience in Windows Server 2012 or 2016, 2019  Active Directory, Active Directory Federation Services, and Active Directory Certificate  Services management.  
• Excellent knowledge and proven experience with software deployment solution tools  (SCCM or Intune is an advantage) 
• Good knowledge of antivirus policies and deployment (McAfee and Microsoft) applied  to servers and workstations protection 
• Excellent knowledge of cloud concepts (IaaS, SaaS, PaaS), with a proven track record of  the management of high-performance computing infrastructure.   
• Good knowledge of industry-standard monitoring systems (MS SCOM, Azure  Monitoring, Zabbix…etc. ) 
• Excellent knowledge combined with a profound technical understanding of the various  protocols involved in the user/device/claim authentication-authorization, file sharing,   email delivery, and cryptography operations in a Microsoft Active Directory Domain  infrastructure.   
• Good knowledge of TLS/SSL protocols and certificate management is required. • Advanced, hands-on PowerShell skills and experience are a must.  
• Proven team player, ability to adjust to different cultures and languages • Adept at analysis, problem-solving, solution and end-user result-oriented • Affinity for teamwork, collaborative attitude, open-minded and adaptable • Well organized, able to work under pressure and manage emergencies 
• Good analytical skills to interpret problems identifies solutions and possible side effects.  

Amit kínálunk / Offer

• cafeteria benefits
• medical insurance
• personalized home office options
• frequent opportunities to travel globally