The primary function of this role is to be responsible for developing and implementing security controls, security standards, security solutions, including the ongoing assessment and tracking of adherence to required security guidelines across the enterprise computing environment, operate security tools, monitor threats and security issues.
Detailed Roles and Responsibilities:
To minimize risk, coordinate to develop policies and related SOPs that encourage secure working and protect data.
Lead Security related project and manage all projects as Program. Deliver projects end to end from business case to operations till retirement of product/project.
To ensure project are managed in accordance with the project management methodology including document templates, identifying project phases, reporting and planning information for successful project delivery.
Audit and Compliance
Implement technical solutions to contractual requirements supporting ISO 27001/PCI DSS and any other applicable standard.
Assist in responses to internal /external audits, penetration tests and vulnerability assessments
Primary responsibilities involve understanding what needs to be achieved in the with respect to IT Security. To assist business analysts in business analysis / reviews for departments as requested.
Recommend and coordinate the application of fixes, patches, disaster recovery procedures in the event of a security breach
Research emerging technologies in support of security enhancement and development efforts
Coordinate with Security assessment vendors and Operational Risk teams to assess the organization s security measures, to identify any weak points that might make information systems vulnerable to attack. They may carry out simulated attacks to test the efficiency of security measures with the coordination of internal /external resources. Prioritize security coverage to ensure that strategically important data and mission critical systems receives the highest levels of protection.
If the monitoring system detects unusual patterns of behavior, must respond quickly to determine the cause and deal with any threat by involving relevant stakeholders, help in analyzing reports SOC reports to identify trends that might indicate a future risk.
Management of Security Services and devices i.e. Secure Gateways, WAF, VAPT and related Security services.
Managing People in IT Security by providing a focused, rational method for improving the performance of team members
Getting people to perform on IT Security services, even if they don't report to directly report to IT Security Manager
Analyzing t team performance in projects and revisiting the engagement approach
Provide guidance and coaching to the team and motivate them to achieve project objectives.
COMPETENCIES, KNOWLEDGE AND EXPERIENCE
Degree along with IT Security professional certifications certification
CISSP Certified preferred
Minimum 3-5 years experience in IT Infrastructure security covering databases, networks, application servers, web servers, operating systems, firewalls, IPS / IDS, log co-relation tools etc.
CISSP / CISM as necessary.
Proficient knowledge of Security solutions i.e. Firewalls, PAM, SIEM, DLP, NAC, IPS/IDS Web application firewall, DOS/DDOS Analytics and Mitigations strategies etc.
Proficient Knowledge of Vulnerability assessment products
Understanding and knowledge of OWASP top vulnerabilities/threat and their solution.
Experience on Network Penetration Testing and Forensic Analysis.
Excellent communications (written and oral), customer service and problem solving /
Strong coaching and mentoring skills
Ability to work under pressure
Excellent organizational, time management, written and verbal communication skills
Strategic Planning, Analyzing Information
Adherence to process, system and schedule
Feedback, motivating, mentoring and coaching
Fostering Team work
CISSP or CISM certified
Working knowledge of Security tools, with extensive knowledge in IT Security
Knowledge of Cyber Security Standards, ISO 27000 Series and Best practice frameworks ISO 27001, PCI-DSS, etc.
Excellent oral and written communication skills in English and Arabic (preferred)
Terms and conditions
Joining time frame: 2 weeks (maximum 1 month)
Should you be interested in this opportunity, please send your latest resume in MS Word format at the earliest