We are looking for an experienced Cyber Security Specialist for a global shipping client. The Cyber Security Specialist should possess a robust foundation in information security, a comprehensive grasp of cyber threats, and a genuine commitment to executing robust security measures. The ideal candidate’s primary responsibilities will include formulating, executing, and upholding security solutions to protect our company's information systems and data.
Key Responsibilities
• Security Infrastructure Design and Implementation
- Design, deploy, and maintain security infrastructure, including firewalls, intrusion
detection/prevention systems, VPNs, and other security tools.
- Collaborate with 3rd party solution vendors, system architects (both shore and fleet) and
developers to ensure security is an integral part of the system design and development process.
• Security Policy Development and Compliance
- Develop and enforce company security policies and procedures to ensure compliance with
industry rules and regulations and company requirements.
- Keep abreast with industry best practices (BIMCO guidelines or ISO 127001) and emerging threats
to continuously improve security policies.
• Monitoring and Analysis
- Oversee day to day operations of security tools (Azure Security Center, Azure Sentinel,
SOCRADAR, to monitor and analyze security events.
- Respond to and investigate alerts generated by security monitoring systems.
• Risk Assessment and Vulnerability Assessment and Penetration Testing
- Identify and assess potential risks and vulnerabilities in the organization's systems, networks, and
applications.
- Conduct regular vulnerability assessments and penetration tests to identify and address security
vulnerabilities.
- Work with development and operations teams to remediate identified vulnerabilities.
• Incident Response and Management
- Develop and implement incident response plans to effectively address and mitigate security
incidents.
- Investigate security incidents, analyze root causes, and recommend corrective actions to prevent
future occurrences.
- Perform e-discovery and forensic on internal and digital threats or incidents.
• Security Awareness and Training
- Design and deliver security awareness training programs for staff to promote a cyber security
conscious culture.
- Provide guidance to staff on security best practices and help them understand their role in
maintaining a secure environment.
• Collaboration and Communication
- Collaborate with cross-functional teams to integrate security into all aspects of the business.
- Communicate security risks and recommendations to stakeholders.
• Documentation and Reporting
- Maintain accurate records of security measures, incidents, and responses.
- Provide regular reports to management on the state of cyber security within the organization.
- Fulfill compliance and audit requirements.
Qualifications And Experience
• Bachelor’s Degree in Computer Science, Information Security, or a related field.
• Advanced degree or relevant certifications (e.g., CISSP, CISM, CEH) is a plus.
• 3 to 5 years proven experience in cyber security engineering or related roles.
• In-depth knowledge of security concepts, protocols, best practices, and technologies.
• Strong understanding of networking, operating systems, and cloud environments.
• Experience with security tools such as Azure security architecture, cloud system, firewalls, antivirus,
IDS/IPS, SIEM, and endpoint protection.
• Excellent problem-solving and communication skills.
