BSc in IT or any other professional qualification related to IT security is a must
CEH, CCNA, CISSP, CRISC, CSX, Microsoft Certifications will be added an advantage
IT SECURITY ENGINEER - (INFORMATION TECHNOLOGY DEPARTMENT)
- Involve and support for developing/implementing open-source/third-party tools to assist in detection, prevention and analysis of security threats
- Assist to Implement protections - install and use software, such as firewalls and data encryption programs, to protect organizations' sensitive information. Assist computer users with installation or processing of new security products and procedures
- Assist to implement installation and use of firewalls, data encryption and other security products and procedures
- Conduct periodic network scans to find any vulnerability and follow-up and support technical teams to remediate the vulnerabilities
- Conduct penetration testing, simulating an attack on the system to find exploitable weaknesses
- Monitor networks and systems for security breaches, through the use of software that detects intrusions and anomalous system behaviour
- Investigate security breaches; lead a technical and forensic investigation into how the breach happened and the extent of the damage and prepare reports of findings to be reported to management
- Lead security incident response, including steps to minimize the impact and then conducting a technical and forensic investigation into how the breach happened and the extent of the damage
- Identify and manage risks rising out of IT technology initiatives. Assist with the risk assessments of new IT projects, identify areas of potential technical and process vulnerability, recommend compensating controls and maintain the IT risk register
- Develop and implement risk responses to ensure that risk factors and events are addressed in a cost-effective manner and in line with business objectives
- Coordinate and prepare IT Risk reports for various Management Committees with a focus on accuracy, consistency and clarity
- BSc in IT or any other professional qualification related to IT security is a must
- CEH, CCNA, CISSP, CRISC, CSX, Microsoft Certifications will be added an advantage
- Two years working experience in information security environment or IS audit
- Knowledge and skills in Vulnerability Assessment and Penetration Testing
- Hands-on experience in information security tools & technologies
- Technical expertise in security aspects of the technological architecture of the bank
No 450, Galle Road.
Colombo03
Apply Online