Senior Cybersecurity And Risk Specialist

We are looking for an experience Cybersecurity and Risk Specialist for our client. He/she should have at least 5 years of proven experience in cyber security engineering or related roles. With in-depth knowledge of security concepts, protocols, best practices, and technologies. Strong understanding of networking, operating systems, and cloud environments. Experience with security tools such as Azure security architecture, cloud system, firewalls, antivirus, IDS/IPS, SIEM, and endpoint protection. Excellent problem-solving and communication skills. The Senior Cybersecurity and Risk Specialist s primary responsibilities will include formulating, executing, and upholding security solutions to protect the company's information systems and data.

Responsibilities

Security Infrastructure Design and Implementation

. Design, deploy, and maintain security infrastructure, including firewalls, intrusion detection/prevention systems, VPNs, and other security tools.

. Collaborate with 3rd party solution vendors, system architects (both shore and fleet) and developers to ensure security is an integral part of the system design and development process.

Security Policy Development and Compliance

. Develop and enforce company security policies and procedures to ensure compliance with industry rules and regulations and company requirements.

. Keep abreast with industry best practices (BIMCO guidelines or ISO 127001) and emerging threats to continuously improve security policies.

. Monitors ISMS performance identifies improvement opportunities and reports to management.

Monitoring and Analysis

. Oversee day to day operations of security tools (Azure Security Center, Azure Sentinel, SOCRADAR,) to monitor and analyze security events.

. Respond to and investigate alerts generated by security monitoring systems.

Risk Assessment and Vulnerability Assessment and Penetration Testing

. Identify and assess potential risks and vulnerabilities in the organization's systems, networks, and applications.

. Conduct regular vulnerability assessments and penetration tests to identify and address security vulnerabilities.

. Work with development and operations teams to remediate identified vulnerabilities.

Incident Response and Management

. Develop and implement incident response plans to effectively address and mitigate security incidents.

. Investigate security incidents, analyze root causes, and recommend corrective actions to prevent future occurrences.

. Perform e-discovery and forensic on internal and digital threats or incidents.

Security Awareness and Training

. Design and deliver security awareness training programs for staff to promote a cybersecurity conscious culture.

. Provide guidance to staff on security best practices and help them understand their role in maintaining a secure environment.

Collaboration and Communication

. Collaborate with cross-functional teams to integrate security into all aspects of the business.

. Communicate security risks and recommendations to stakeholders.

Documentation and Reporting

. Maintain accurate records of security measures, incidents, and responses.

. Provide regular reports to management on the state of cyber security within the organization.

. Fulfil compliance and audit requirements.

Requirement:

. Bachelor's Degree in Computer Science, Information Security, or a related field.

. Advanced degree or relevant certifications (e.g., ISO, CISSP, CISM, CEH) is a plus.

. At least 5 years of proven experience in cyber security engineering or related roles.

To apply, please send your cv to .

We regret that only shortlisted candidates will be notified. Thank you for your understanding!