Key Responsibilities:
- Actively monitor, analyze, and respond to security alerts and incidents from the Security Operations Center (SOC), taking direct technical ownership of investigations and remediation actions.
- Perform in-depth technical incident response including identification, containment, eradication, and recovery from security threats such as malware infections, phishing attempts, unauthorized access, and data breaches.
- Conduct regular vulnerability assessments, compliance check and penetration testing of hotel IT infrastructure directly remediate or coordinate the technical resolution of identified vulnerabilities to ensure compliance with industry security standards.
- Define, Implement and enforce security baselining to enhance overall security posture, establishing standardized security configurations (e.g hardened golden imager), isolating and retiring end-of-life (EOL) system/software.
- Manage and technically evaluate security vendors and third-party service providers to ensure effective implementation and operation of security solutions.
- Support and enforce IT security policy and procedures through hands-on technical implementation and compliance checks, in close collaboration with Group IT.
- Prepare risk assessments and improvement plans for management, conducting regular risk assessment to identify potential security risks on Hotel's IT assets, and providing actionable recommendations for continuous security posture improvements.
- Lead technical aspects of security awareness programs and phishing simulations to strengthen staff cyber hygiene.
- Provide hands-on support for cloud security environments, including Azure, AWS, Office 365, Opera Cloud and SAP S/4 HANA, ensuring proper secure configuration and continuous monitoring for threats.
- Stay current with emerging cyber threats, attack techniques, and security technologies, and proactively apply this knowledge to protect hotel IT assets.
Requirements:
- Degree in Computer Science, Information Engineering, Information Security, or related disciplines.
- Minimum 5 years hands-on experience in IT security, incident response, and technical risk management.
- Qualification in CISA / CISM / CISSP / CCSP or any relevant certification will be an advantage
Demonstrated expertise in:
- Technical incident response and threat remediation
- Vulnerability and patch management
- Privileged account management and identity access management (PAM/IAM)
- Security operations and monitoring
- Cloud security (Azure, AWS, Office 365, Opera Cloud, SAP S/4 HANA)
- Strong analytical, troubleshooting, and problem-solving skills able to independently investigate and resolve complex security issues.
- Self-motivated, meticulous, and able to work independently with minimal supervision.
