Junior Cyber Strategy & Architecture Analyst (m/w/d)

at  NVISO

Who are we?
It all starts with the mission: NVISO is here to protect European society from potentially devastating cyber attacks! This means we offer cyber security services to private and governmental organizations to help them better prepare for, prevent, detect and respond to cyber security incidents.
All of this is built on four fundamental values that define who we are: We are Proud, We Break Barriers, We Care and No BS!
Tasks

As a Cyber Strategy & Architecture Analyst, you will assist our smaller and larger customers with the overall reinforcement of their security posture either through your technical/IT skillset or with your experience and education in managerial and governance tasks. Depending on your preference (either technical or governance related) typical engagements include:

• Defining a Security Strategy, supported by a corporate threat assessment in collaboration with key stakeholders in the organization
• Assisting IT or security teams with the implementation of strategic security projects, acting as an interim security officer or technical advisor. You may be supported by other NVISO experts, or work in full integration with the client organization
• Implementing or refining our client’s security governance, including decision-making mechanisms, security policies, and norms or security management processes and procedures
• Creating state of the art security architectures to extend or modernize the technical defense capabilities of our clients
• Executing risk assessments and elaborating action plans in concertation with internal and external stakeholders
• Assisting in reaching or maintaining compliance to information security legal, contractual, or internal requirements
• Translating security controls in effective, efficient solutions, which are maintainable, manageable, and scalable
• Defining or testing crisis management, business continuity, or disaster recovery planning, including backup strategies, redundant IT designs using private/public cloud technologies
• Raising the awareness of staff or management on cyber threat through classic or innovative awareness initiatives also using automation and tools

We work both for very large and very small organizations that all have one thing in common: a keen interest in making significant progress in their protection against current and emerging cyber threats.

Requirements

• (First) Experience in Information Technology or IT-Audit, or in any other position that you believe has equipped you with the skills, the mindset and the knowledge to support our team
• Bachelor or a Master’s degree in IT, information security or technology is beneficial or first work experience in IT
• Used to operating with a great deal of autonomy, but also appreciate the value of team work
• A “people person”: a good communicator and concerned about your co-workers
• Results-oriented and able to deliver within preset deadlines. You value quality and client satisfaction above all, and appreciate the value of outstanding deliverables
• Fluency in German and English

Benefits

At NVISO, we care. We are committed to offering you a highly competitive remuneration package including financial and non-financial components:

• A training budget of 10,000 EUR plus 10 days paid time off rolling over two years.
• Working with and learning from the best people in the European cyber security “scene”. We have several SANS Instructors working for us and we are also represented at popular hacking conferences (BlackHat, BruCON, OWASP, etc.). In addition, our employees can take advantage of prestigious continuing education opportunities (GSE, GXPN, CISSP, OSCP, etc.)
• A forward-thinking and agile company that supports you in the creation and implementation of new initiatives
• Unique team events (most recently e.g. Lisbon, Dubai, Malta)
• A sophisticated coaching concept starting on day 1
• 30 days of vacation
• Flexible working hours and home office options (Working Abroad Option)
• Cost absorption for the local transport ticket and the Klimaticket
• Company bike leasing
• A cool office in the heart of Vienna

• Defining a Security Strategy, supported by a corporate threat assessment in collaboration with key stakeholders in the organization
• Assisting IT or security teams with the implementation of strategic security projects, acting as an interim security officer or technical advisor. You may be supported by other NVISO experts, or work in full integration with the client organization
• Implementing or refining our client’s security governance, including decision-making mechanisms, security policies, and norms or security management processes and procedures
• Creating state of the art security architectures to extend or modernize the technical defense capabilities of our clients
• Executing risk assessments and elaborating action plans in concertation with internal and external stakeholders
• Assisting in reaching or maintaining compliance to information security legal, contractual, or internal requirements
• Translating security controls in effective, efficient solutions, which are maintainable, manageable, and scalable
• Defining or testing crisis management, business continuity, or disaster recovery planning, including backup strategies, redundant IT designs using private/public cloud technologies
• Raising the awareness of staff or management on cyber threat through classic or innovative awareness initiatives also using automation and tool