Job Responsibilities:
- Review and development of security framework, information security policies, processes / procedures and guidelines on an ongoing basis.
- Establish compliance with these policies / procedures through ongoing security reviews and audits, not limited to log analysis and security assessment of customer ICT systems
- Conduct security risk management exercise
- Conduct table-top exercises
- Conduct vulnerability assessment, coordinate penetration tests activities
- Conduct information security awareness training
- Responsible for the development and management of customer’s security incident response plan.
- Lead and support customer in the matters of security incident resolution and response.
- Be the point-of-contact/customer liaison to assist and advise customer for ICT security related matters
- Project managed the activities and deliverables during the implementation phase.
Job Requirements:
- CISSP certification is a Must,
- CISM, Security+, IT security tools certifications (Imperva, Carbon Black) is a plus
- 5+ years IT security experience required.
- Experience with Networks, Servers (Windows and UNIX), Database.
- Experience in IT security auditing, security assessments.
- Understand protocols, traffic flows, ability to analyse logs from various sources.
- Knowledge of Active Directory, Endpoint protection solutions, Early Detection and Response solution, Database Activities Monitoring tools, SIEM etc.