Bachelors Degree in Computer Engineering / Computer Science / Information Security / Information technology specializing in Information Security
DUTIES AND RESPONSIBILITES
Managing information security projects
Determining security gaps and inefficiencies through comprehensive security reviews of IT processors and technologies for new and existing IT solutions/processors
Utilize security scanning tools and packet capture utilities to verify servers/applications are communicating according to best practices
Support security operation functions which include SIEM, URL Filtering, Vulnerability Management, Endpoint Protection and other security implementations as required
Research and implement tools to assist in detection, prevention and analysis of security threats
Develop strategies to respond to and recover from a security breach
Support incident response, including steps to minimize the impact & then conducting technical & forensic investigations
Research security enhancements and make recommendations to management
Conduct awareness training on information security standards, policies and best practices
Ensure business units conformance to Information Security Management Framework and support ongoing certifications of the Bank (ISO/IEC 27001:2013, PCI/DSS, ISO 20000J
Evaluating and recommending new information security technologies, security trends and counter-measures against threats to information or privacy
Developing security reports and dashboards
Keep vigilance on latest security threats, privacy legislation, regulations, advisories, alerts and vulnerabilities pertaining to the business. Stay up-to-date on information technology trends and security standards
Maintain and encourage open and honest business relationships within the team and throughout
QUALIFICATIONS AND REQUIREMENTS
Bachelors Degree in Computer Engineering / Computer Science / Information Security / Information technology specializing in Information Security
Masters degree in Information Security is preferred
Professional qualifications such as GISP, SSCP, CEH, CCNA security, RHCSA, MCSA is an advantage
Minimum 4 to 5 years experience as an Information security engineer in a reputed organization, preferably in financial sector or Information security firm.
Possessing of following skills and experience is mandatory
Understanding security technologies like firewalls, VPN, PKI, cryptography, antivirus, IPS/IDS, end point security, WAF, MDM, DBF
Exposure on system and Network security administration - exposure on various networking products, security products, databases and operating systems o Troubleshooting skills, problem solving and technical analysis o Knowledge on Windows and Linux environments
Ability on conducting regular reviews on IT systems against information security requirements
Hands-on experienced on information security monitoring, information security incident handling, analysis and reporting o Knowledge on ISO/IEC 27001:2013 and PCI/DSS certifications o Excellent technical writing and reporting skills o Strong work ethics with attention to detail o Excellent project management skills The successful candidate will be provided with an attractive remuneration package, including fringe benefits commensurate with benchmarked financial institutions.