Roles & Responsibilities
- Develop and continually refine the security framework, information security policies, processes, procedures, and guidelines.
- Ensure compliance with these policies and procedures through regular security reviews and audits, including log analysis and security assessments of customer ICT systems.
- Conduct security risk management exercises and table-top exercises.
- Perform vulnerability assessments and coordinate penetration testing activities.
- Deliver information security awareness training.
- Develop and manage the customer's security incident response plan.
- Lead and support the customer in resolving and responding to security incidents.
- Serve as the primary point of contact and advisor for the customer on ICT security-related matters.
- Manage project activities and deliverables during the implementation phase.
Job Requirements
- Minimum of 5 years of experience in IT security.
- Experience with networks, servers (Windows and UNIX), and databases.
- Proven track record in IT security auditing and security assessments.
- Proficient in analyzing logs from various sources and understanding protocols and traffic flows.
- Knowledge of Active Directory, endpoint protection solutions, Early Detection and Response solutions, Database Activity Monitoring tools, and SIEM.
- Adaptable, team-oriented, and proactive personality.
- Ability to independently organize and plan work.
- Capable of working effectively in a rapidly changing environment.
- Strong multi-tasking skills and the ability to switch contexts effectively between different activities and teams.
- CISSP, CISM, Security+, or other relevant IT security certifications (e.g., Imperva, Carbon Black) are advantageous.
- EA Licence No.:18S9405 / EA Reg. No.:R1330864
Skills & Competencies
IT security, CISSP, CISM, Security+
