Evaluate current network, infrastructure, internal processes and activities to identify security risks, create detailed plans to improve security posture with IT security best practices
Develop and maintain all documentation on security policies and controls and work with senior management to enforce compliance with policies and procedures in entire organization
Design and implement various network and IT security related systems. Support and manage all technical aspects of security controls and technologies, including configure and troubleshoot security tools and devices (e.g. firewalls, data encryption, endpoint protection, Syslog, intrusion detection, hardening, etc.) and responsible for deployment of security patches and software upgrades
Participate and coordinate with clients and project team on security risk assessment and vulnerability testing. Identify gaps and potential security concerns, provide mitigation strategies, develop and implement appropriate solution
Monitor network and systems for security breaches and investigate violations, response to security incident, perform root cause analysis, provide timely support and recovery from a security breach
Maintain up-to-date knowledge of IT security industry, develop information security training plan and drive awareness within the organization
Help the organization evolve its application security functions and services
To lead application vulnerability scanning and penetration testing remediation.
Work closely with cross-functional teams (Engineering, DevOps, Product Owners) while carrying out daily tasks.
Implement and maintain automated security scanning tools
Evaluate, monitor and analyse threat, vulnerability, impact and risk of security issues discovered from various tools such as SAST and SCA. To also evaluate and propose suitable DAST tool.
Educate developers on secure coding techniques and security best practices.
Able to work extended office hours when required
Qualifications:
Diploma or Bachelor's degree in computer science or cyber security, or relevant hands-on experience on cyber security
At least 5+ years of relevant experience in designing and implementation of secure networks, systems and application architectures
Good to have LPT/CPT/CMWAPT/CEH Certificates
Good to have knowledge on software development principles and SDLC, and also understanding of programming language like C#, ASP.Net and/or ReactJS
Good to have knowledge on MS SQL, PostgreSQL or other commonly used RDBMS.
Knowledge of encryption technologies, secure communications and secure credentials management.
Experience in system administration role supporting multiple platforms, anti-virus software, intrusion detection, firewalls and content filtering
In-depth understanding of network access and monitoring management, privileged access management in MS Server/Linux OS, MS SQL/PostgreSQL environment
Good to have knowledge in of current cyber security trends such as OWASP Top 10, threats, solutions and tools
Good to have knowledge in SAST, SCA, DAST and other vulnerability scanning tools.
Knowledge in standards Compliance & Agile Experience is a plus.
Ability to work independently and also good problem-solving skill.
About Us:
A.MI represents Ascentis and Meet Isaac. It is a brand name adopted by both companies to represent our deeply-rooted relationship. Ascentis continues to pioneer on CRM, loyalty and rewards technology while Meet Isaac focuses on creative, digital marketing and customer experiences. Armed with more than 50 marketing awards over the past few years, both companies has a proven track-record that's well validated by marketing leaders in their respective industries. When you combine the efforts of both companies together - you get the power of 2 full service agencies that are ready to help their clients pivot their business to the next level.
Do you have what it takes to be a part of this award winning combination?
Beware of fraud agents! do not pay money to get a job
MNCJobz.com will not be responsible for any payment made to a third-party. All Terms of Use are applicable.