Job Responsibilities and Duties:
Vulnerability Management & Security Operations
- Lead and manage the enterprise vulnerability management program including penetration testing, scanning, assessment, prioritization, and remediation tracking
- Test and assist in patch management operations across all systems, ensuring timely deployment while maintaining business continuity
- Drive remediation activities for audit findings and security vulnerabilities
- Monitor and respond to security alerts from various security tools and SIEM systems as part of daily security operations
- Conduct regular security assessments and vulnerability scans to identify and remediate security gaps
Security Controls & Compliance
- Implement and maintain security controls to protect against evolving cyber threats
- Ensure compliance (PCI DSS, MAS TRM) across all systems and environments
- Support internal and external audits by providing evidence of security controls and compliance measures
- Implement, and manage IT security infrastructure and tools (EDR, WAF, firewall, AWS)
- Work closely with IT director in securing AWS cloud environment
- Perform security configuration hardening of systems using CIS (Center for Internet Security) benchmarks and industry best practices
- Oversee endpoint, network, and application security across cloud environment
- Drive IT security projects when required
