ICT Information Security Engineer

Research & Development
IT Florence

Apply now
June 7, 2024

Join Ascom, a pioneering force in Healthcare ICT and mobile workflow solutions, where our legacy of over 160 years drives innovation that transforms the healthcare landscape. With our headquarters rooted in Switzerland, Ascom leads the charge in revolutionizing healthcare worldwide. Our solutions, deployed across 19 countries, empower over 12,000 hospitals, managing an astounding 800 million alerts annually.

At Ascom, we are dedicated to enhancing the healthcare experience for all. As part of our commitment, we're seeking an ICT Information Security Engineer based in Florence. In this pivotal role within the ICT group, you'll play a crucial part in ensuring Ascom maintains robust digital security measures. Your mission will be to develop innovative solutions that shield against the latest cyber threats, safeguarding our systems, servers, and network connections.

If you're passionate about leveraging technology to advance healthcare while ensuring the highest standards of security, join us at Ascom as we shape the future of care facilities and homes through cutting-edge solutions.

Your Contributions:


The ICT Information Security Engineer will play a pivotal role in identifying, investigating, and safeguarding against information security breaches aimed at Ascom’s infrastructure and data. Responsibilities encompass monitoring server and firewall logs, analyzing network traffic, maintaining virus scans, and addressing issues through troubleshooting. Additionally, the expert will contribute to the timely resolution of vulnerabilities and perform user activity audits as needed.


  • Proactively work with business units to remediate security issues and secure infrastructure architectures in hybrid and multi-cloud environments and projects.
  • Ensuring security updates are in place across all systems, perform security checks and troubleshooting.
  • Liaising with complementary departments to ensure adherence to security protocols
  • Analyzing network systems and structures to ensure the most secure approach is being employed and ensuring security tools are running properly on company networks and devices.
  • Researching emerging threats and the safeguards that can provide protection
  • Monitor the network and provide early warning of abnormalities or problems.
  • Communicate the system status and keep users informed of downtime or changes to the system
  • Establishing good documentation standards to preserve the traceability and serviceability of delivered security and solutions.


      The Ideal Candidate:

      • Bachelor’s or Master's degree in Computer Science, Cybersecurity, or related field with 3+ years of experience
      • Proficiency in identifying potential attack vectors such as XSS, injection, hijacking, social engineering, etc.
      • Knowledge of networking protocols including TCP/IP and experience with HTTP and HTTPS
      • Familiarity with ISO/IEC 27001 standard and GDPR preferred
      • Understanding of data privacy laws and regulations
      • Broad knowledge of security scenarios impacting businesses and methods for detection
      • Proficiency in security principles, functional shell code fundamentals, and software management best practices
      • Familiarity with Cloud security control requirements, cybersecurity standards, policies, frameworks, and architecture in hybrid environments
      • Experience in data analysis and reporting, including business model and budget
      • Preferred certifications: CCNA, OWSE, CISSP, CISM, CISA, GXPN, CEH
      • Proficiency in cybersecurity/vulnerability tools such as NESSUS, OWASP, ACAS, SCC, NMAP
      • Well-versed in security technologies including SIEM, Intrusion Detection Systems, End-point security, Web Proxy/Content Filtering, Active Directory, PKI, Radius, Log Analysis, etc.
      • Proficient in managing Microsoft Windows and Linux systems, firewall and switch management, virtualization environments, and Microsoft Defender/O365
      • Knowledgeable in penetration testing techniques, Splunk, AMP Endpoint Protection, Email Security (DKIM, SPF, DMARC), DLP, SSL Decryption, Shell Scripting, PowerShell, PKI Certificate Management, and encryption techniques
      • Experience in reviewing security scans and remediating vulnerabilities
      • Strong communication skills, both oral and written
      • Ability to execute tasks in high-pressure environments and work effectively in team-oriented settings
      • Willingness to work on-call during security breaches or emergencies
      • Excellent analytic, problem-solving, and time management skills, with the ability to work independently when necessary
      • Fluent English language skills required


        What We Offer You:

        • A company you can take pride in.
        • Inspiring and collaborative colleagues.
        • Abundant opportunities for personal and professional growth.
        • The chance to work with cutting-edge technology in the healthcare industry.

         

        Join Us and Make an Impact:

        Ascom is an equal opportunity employer committed to fostering diversity, equity, and inclusion. We welcome applicants of all backgrounds and do not discriminate based on race, color, religion, sex, sexual orientation, gender identity, national origin, age, marital status, veteran status, disability, or any other protected status. We believe that a diverse workforce strengthens our team, drives innovation, and enriches our workplace. Join us in creating an inclusive environment where everyone is valued and has equal opportunities to succeed.

        Join our team at Ascom and help us realize our vision of enhancing digital information for optimal decision-making in the healthcare industry. Together, we are making a real difference in the lives of those who benefit from our technology.

        To learn more about what we do, visit us at: www.ascom.com

        Back to list Apply now