Description:
Functional Responsibilities:
- Design, implement, and maintain security architectures and frameworks.
- Conduct regular security assessments, vulnerability scans, and penetration testing.
- Monitor security alerts and incidents, responding promptly to mitigate risks.
- Oversee the management of security appliances, ensuring effective patch management.
- Collaborate with cross-functional teams to integrate security into all operations.
- Ensure compliance with statutory and regulatory requirements.
- Stay current with security trends and technologies, recommending improvements.
- Provide security training and awareness programs for employees.
- Support incident response activities, including investigations and remediation.
- Evaluate and implement advanced security tools and technologies.
- Manage and secure cloud solutions, following best practices for cloud security.
Skills:
- Strong knowledge of security frameworks (NIST, CIS, ISO).
- Expertise in network security, including firewalls and NAC.
- Proficient in implementing and administering Privileged Access Management (PAM) solutions.
- Knowledge of Endpoint Detection and Response (EDR), Extended Detection and Response (XDR), and File Integrity Monitoring (FIM), with experience in their administration.
- Understanding of the technologies behind these solutions; implementation is vendor-managed.
- Familiarity with cloud security principles (AWS, Azure, Google Cloud).
- Excellent analytical and problem-solving skills.
- Strong communication skills to convey complex concepts to non-technical stakeholders.
- 5+ years in enterprise security or related roles
Academic & Professional Qualifications:
- Bachelor’s degree in Computer Science, Information Technology, Cybersecurity, or a related field.
- Relevant security certifications (CISSP, CEH, CompTIA Security+) are preferred.