IT Security Analyst - Infrastructure



Job Family


For over 80 years, GfK has been a reliable and trusted insight partner for the world’s biggest companies and leading brands who make a difference in every consumer’s life - and we will continue to build on this. We connect data, science and innovative digital research solutions to provide answers for key business questions around consumers, markets, brands and media. With our headquarters in Germany and a presence in around 60 countries worldwide, you benefit from our global company with a diverse community of ~9,000 employees.

Harnessing the power of our workforce, the greatest asset we have is our people. As part of GfK, you can take your future into your own hands. We value talent, skills and responsibility and support your development within our international teams. We are proud of our heritage and our future: Currently we are in the latter stages of a transformational journey from a traditional market research company to a trusted provider of prescriptive data analytics powered by innovative technology. This is only possible with extraordinary people and this is why we are looking for YOU to help create our future. For our employees as well as for our clients we pursue one goal: Growth from Knowledge!

Job Description

Mission of the role
The primary focus of the role is to introduce and maintain a specific set of technologies, designs and standard, acting as the gatekeeper and guiding the design to meet the overall objectives for the IT security domain.

This role will require liaising with Senior Business and IT key stakeholders, as well as Senior Leaders and other stakeholders such as the Data Protection Officer, Compliance Officer and Legal and Works Council representatives.

As an IT Security Anlyst you will have the following key accontabilities:

Infrastructure Security

  • Manage vulnerability detection activities

  • Support vulnerability remediation activities

  • Support definition and compliance to infrastructure security policy, standard and procedures

  • Manage and respond to tickets in the security queue

  • Assist with security incident response activities

  • Attend Global Change Advisory Board and review proposed changes to identify gaps in controls or changes that introduce an unacceptable level of risk

  • Perform configuration reviews of firewall, AV, web content filter & other security tools

  • Perform Effectiveness reviews of technical security controls

  • Audit of access control systems

Risk & Threat management

  • Maintain expertise by tracking and understanding emerging security practices and standards, participating in educational opportunities, reading professional publications, maintaining personal networks, participating in professional organizations.

  • Keep an eye on the emerging threats and vulnerabilities to ensure that the organization’s security posture is kept up to date.

  • Align standards, frameworks and security with overall business and technology strategy.

  • Work with the IT and Information Security team to identify IT security risks and recommend remediation activities to reduce the risks to an acceptable level

Technology & security tools

  • Act as an SME for security topics

  • Participate in the review and creation of enterprise security documentation

  • Assist or lead with security projects such as:

    • System hardening

    • Application whitelisting

    • Vulnerability management

    • Control of administrative rights

    • Enhanced security incident response

    • Access Management

  • Identify security design gaps in existing and proposed architectures and recommend changes or enhancements.

  • Design, build and implement enterprise-class security systems in an agile tech environment.

  • Provide technical project management for IT Security technology projects.

  • Design / adapt security solutions to mitigate threats as they emerge.

  • Design / adapt solutions that balance business requirements with information and cyber security requirements.

  • Work with the operational teams to ensure that all technology, systems and process controls are implemented, configured and maintained in accordance with security policies

Join our team and benefit from the following advantages: 

  • Exciting work environment that brings people together

  • Use of the latest digital technologies

  • Initial and ongoing trainings to support your development

  • Opportunities for personal and professional growth

  • Competitive remuneration and bonus scheme linked to individual performance and company results

  • 3 additional non-working days annually

  • Food vouchers

  • Health insurance

  • Discount program with external vendors

  • Eco friendly travelers are welcome to the office – parking places for bikers and free card for public transportation are available to all employees

  • Variety of sport activities such as football and traditional Bulgarian dances

  • Last but not least – GfK Sofia office is located close to the city centre and easily accessible from any point by public transportation – 47A Tsarisgradsko Shose Blvd

All documents will be treated in the strictest confidentiality.
Only short-listed candidates will be invited for an interview.

We offer an exciting work environment that brings people together. We encourage an entrepreneurial and innovative spirit. We make use of the latest digital technologies. We are looking for self-starters, who accept challenges and create solutions.

Can there be a better place to take center stage in the digital revolution? We are excited to getting to know you!

Posted: 23 days ago

City: Sofia

Work Area: IT

Job Time: Full Time

Requisition ID: R00008494