Job Summary
We are building a specialized team of IT Security Officers (ITSOs) to serve as subject matter experts, providing comprehensive security support to system managers and the Board's Cybersecurity team. The team will be responsible for safeguarding the IT infrastructure, ensuring compliance with security policies and standards, and overseeing cyber operations across all hosting environments (On-premise, GDC, GCC, GCC+, and others). Responsibilities will be strategically distributed among team members to ensure broad coverage and effective security operations.
Team Structure and Scope Distribution
The ITSO team will divide responsibilities across key security domains to ensure specialized coverage while maintaining collaborative oversight. Team members will report directly to the Board's Cybersecurity Team and focus on specialized areas including:
- Security monitoring and alert management
- System security and compliance activities
- Technical support, risk assessments, and governance functions
This structured distribution allows for deep expertise in each domain while ensuring cohesive and comprehensive security operations.
Key Responsibilities
System Security and Compliance
- Conduct security reviews, system hardening checks, and risk assessments based on deviations from hardening standards (e.g., CIS Benchmarks)
- Create and maintain client hardening baselines using established benchmarks (CIS Benchmarks or manufacturer-provided guidelines)
- Develop, review, and maintain Standard Operating Procedures (SOPs)
- Plan and schedule annual reviews of security hardening documents
- Perform compliance reviews and ensure timely remediation of findings
Security Alert Management and Response
- Monitor phishing alerts and communicate with staff regarding malicious emails
- Support audit activities, vulnerability scans, and penetration tests
- Execute malware scans on endpoints following SOPs for anti-virus alerts
- Collaborate with cloud security engineers to address findings from CSPM tools (including the government in-house tool, Cloudscape)
- Review CSPM findings, monitor suppression expiry, and coordinate with system Officers-in-Charge and infrastructure teams for timely remediation
- Maintain a tracking system to document remediation status (completed, in progress, or escalated)
- Assess security recommendations using provided GenAI tools to distinguish valid alerts from false positives
Technical Support and Governance
- Provide vulnerability monitoring and recommend mitigation actions to relevant teams
- Offer security advice and proposals for new projects and functionalities
- Monitor governance compliance tools such as Cloudscape
- Conduct risk-based assessments to prioritize alert remediation
- Update governance tools with approved suppressions for validated findings
- Respond to auditor RFIs related to security monitoring
Reporting and Training
- Collaborate to compile and present monthly reports on task progress and outstanding issues to the Board's Cybersecurity team
- Coordinate monthly IT security awareness training and briefings for users
- Contribute specialized expertise to develop and deliver comprehensive training programs
Qualifications
Education & Certifications
- Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or a related field
- Minimum of one internationally recognized security certification (CISSP, CISM, CRISC, or CISA)
Experience & Skills
- At least 2 years of proven experience in cloud cybersecurity, including security assessment and vulnerability management in cloud and on-premise environments (especially GCC)
- Familiarity with security platforms such as Azure Log Analytics, AWS CloudWatch, AWS Security Hub CSPM, and Microsoft Defender for Cloud
- Strong analytical and problem-solving skills for resolving security issues
- Excellent communication skills in spoken and written English for effective collaboration with teams, vendors, and stakeholders
