Job Description

Key Responsibilities: * Security Monitoring and Incident Response:Continuously monitor security alerts and events.

Investigate and respond to security incidents, breaches, and vulnerabilities.
Develop and maintain an incident response plan.

• Security Policy and Compliance:Develop and enforce security policies, standards, and procedures.

Ensure compliance with relevant regulations and industry standards (e.g., GDPR, HIPAA, ISO 27001).

• Vulnerability Assessment and Penetration Testing:Conduct regular vulnerability assessments and penetration tests.

Recommend and implement security enhancements based on findings.

• Security Awareness and Training:Promote cybersecurity awareness among employees.

Conduct security training sessions and workshops.

• Network and Systems Security:Configure and maintain firewalls, intrusion detection systems, and other security technologies.

Patch and update systems and applications to address security vulnerabilities.

• Security Documentation:Maintain comprehensive records of security incidents, policies, and procedures.

Create security reports and communicate findings to management.

• Security Risk Assessment:Identify and assess security risks and provide mitigation strategies.

• Security Architecture and Design:Participate in the design and implementation of secure systems and infrastructure.

• Threat Intelligence:Stay up-to-date with the latest cybersecurity threats and trends.

Utilize threat intelligence to enhance security measures.

Qualifications:

• Bachelor\'s degree in Computer Science, Information Technology, or a related field (Master\'s degree preferred).
• Relevant cybersecurity certifications (e.g., CISSP, CISM, CompTIA Security+).
• 4 years of experience in cybersecurity.
• Strong knowledge of security frameworks, regulations, and standards.
• Proficiency in security tools and technologies.
• Excellent problem-solving and communication skills.
• Strong attention to detail and the ability to work independently.

Preferred Skills:

• Experience with SIEM (Security Information and Event Management) systems.
• Knowledge of cloud security best practices (e.g., AWS, Azure, GCP).
• Familiarity with network security protocols and technologies.
• Incident response and digital forensics skills.
• Programming or scripting skills (e.g., Python, PowerShell).
• Certified Ethical Hacker (CEH) or Offensive Security Certified Professional (OSCP) certification.

ITCAN