The IT Security Officer (ITSO) is responsible for safeguarding the Customer's IT infrastructure by developing, implementing, and maintaining robust security policies, governance frameworks, and incident management processes. The role involves proactive risk management, incident response, coordination with external stakeholders, and continuous monitoring of emerging cyber threats to ensure the confidentiality, integrity, and availability of IT systems.
Key Responsibilities & Duties:
- Develop, maintain, and review IT security policies, standards, and action plans at least annually or as required by the Customer.
- Evaluate, recommend, and support the implementation of appropriate IT security products, tools, and solutions within the Customer's IT infrastructure.
- Implement and manage IT security risk assessment methodologies, ensuring alignment with service management requirements, regulatory obligations, and industry best practices.
- Develop and implement security management frameworks and governance structures as specified by the Customer.
- Establish, operate, and continuously improve IT Security Incident Management processes, including detection, response, escalation, and resolution in accordance with Customer guidelines.
- Collaborate with external partners, vendors, and suppliers to investigate and resolve IT security incidents in a timely and effective manner.
- Participate in industry-wide IT security incident response simulations, tabletop exercises, and technical security assessments as required.
- Conduct forensic investigations when required, including secure disk image acquisition, preservation of evidence, and analysis within stipulated timelines.
- Monitor, analyse, and report on emerging security threats, vulnerabilities, risks, and mitigation strategies relevant to the Customer's IT infrastructure.
- Conduct regular engagement sessions with key stakeholders to highlight security risks, review incidents, and recommend improvements to the IT security posture.
- Liaise and coordinate with external suppliers, security organisations, and relevant Government agencies on IT security matters impacting the Customer.
- Review, track, and follow up on security alerts and reports generated by central security tools, providing timely updates and remediation status to the Customer.
- Manage and maintain the inventory of IT assets monitored by central security tools, ensuring proper onboarding and compliance of servers, networks, databases, and related systems.
- Perform additional duties and security-related activities as required to ensure the overall protection of the Customer's IT environment.
Qualifications:
- Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or a related discipline.
- Proven experience in IT security with a strong focus on infrastructure security.
- Solid understanding of information security principles, frameworks, best practices, and relevant regulatory requirements.
- Hands-on experience with a variety of security tools and technologies (e.g., SIEM, endpoint security, vulnerability management tools).
- Familiarity with digital forensic investigation techniques, processes, and tools.
- Strong analytical, investigative, and problem-solving skills.
- Excellent written and verbal communication skills, with the ability to engage technical and non-technical stakeholders.
- Ability to work independently as well as collaboratively within a team environment.
- Experience coordinating with external partners, vendors, and service providers on security-related matters.
Minimum Professional Certifications:
- Certified Information Systems Security Professional (CISSP) or
- Certified Information Security Manager (CISM) or
- GIAC Certified Incident Handler (GCIH)
Working Experience Requirements:
- 1 to 4 years of relevant experience in IT security, cybersecurity operations, or infrastructure security roles.
To apply,simply click the Apply button or send your updated profileto
EA Licence No.:18S9405 / EA Reg. No.:R1330864
PerceptSolutions is expanding and actively seeking talented individuals. We encourageapplicants to follow Percept Solutions on LinkedIn at https://www.linkedin.com/company/percept-solutions/to stay informed about new opportunities and events.
