Job Description

Scope and ResponsibilitiesWork on all Client Requests related to Security and ComplianceWork closely with Wintel/Network/FSE/MSDC teamsFirewall Change Request ReviewSecurity AssessmentSecurity Policies, Standards and Procedures Review security policies, standards and procedures regularly Evaluate existing policies alignment with current risk exposure Propose policy updates to address evaluated security risks Update and document policies Brief teams on updated security and compliance requirementsSecurity Operation Escalation point for security issues originating. from networks, desktop or server teams for the following security products.- CloudGuard for email security- McAfee endpoint protection- CheckPoint SandBlast endpoint security- TrendMicro Deep Discovery- URL reputation assessment and evaluate access requests Performs remediation based on client agreements on recommendations Present security incident report and recommendation to client Monitors end-user security solutions for updates and overall health status Maintains ATP, anti-phishing for O365 policies (Cloudguard) Monitors network for targeted attacks, advanced threats and ransomware Provides advisory on security control configurations for all security toolsetsThreat Intel Evaluate Threat Intelligence reports released by NTT and other threat intelligence agencies.- Evaluate threats and analyse against products used within the supported environment- Evaluate solutions provided to remediate reported threats- Plan and implement solutions with IT teams to address the threats- Track and report on resolution with clientVA Plan coordinate and execute vulnerability assessment scan. Present findings to client. Recommend remediations and mitigations on findings. Coordinate resolution among the support teams. Track remediations to resolution with responsible teams. Update remediation progress report to client regularly.Security Audit Support auditor during the security audit . Evaluate audit findings and work with respective tower leads to propose solutions. Coordinate the implement solutions with various IT teams upon approval by client Track and report on progress of remediation to audit findings to client.IT Awareness Survey Conduct Annual IT Security- Create IT Security Survey to access users understanding- Tabulate results and propose improvement by making use of quarterly awareness talk to reinforce understandingTraining Provide cyber security awareness talk to all users quarterly.-Propose security topics to client for security training and conduct quarterly talk.-Prepare and send fortnightly email notification/messages on security advisories to all staff.Reports Generate report from end-point security solutions Generate report from AD failed Login Generate reports from O365 for phishing/malware/spam, etc Generate logs from Internet and 3rd Party Firewall Generate report from Trendmicro/Sandblast/Cloudguard/McafeeQualifications: Diploma/Degree in Computer Science/Information Technology, Computer Engineering or Equivalent Minimally three (3) years of experience in IT security governance and operation; and CISSP, Global Information Assurance Certification (GIAC) or equivalent certification(s). Knowledge on systems and network and firewalls. Should have experience and exposure on Zscaler Checkpoint Cloudguards and Sandblast Mcafee & Trendmicro Qualys
Not Specified