Provides expertise on security technologies and innovative security concepts, and works toward enhancing the resilience of security operations.
Provides security consultancy and advisory for new projects and ongoing security operation.
Monitor security systems - Perform audits, reviews, security control assessments, and tests of security operations based on established schedules - Perform real time analysis and trending of security log data from various security systems - Analyse security event data to identify suspicious and malicious activity - Provide inputs to improve security monitoring rules and alerts - Document processes related to security monitoring
Maintain security operations - Implement security protocols - Create emergency response procedures - Maintain data sources feeding the log monitoring system - Schedule security checks in accordance with reporting schedules - Prepare periodic status reports for presentation to management
Respond to security incidents - Review security incident reports - Evaluate the type and severity of security events - Assist with establishing procedures for handling detected security events - Provide status updates during the life cycle of an incident - Create final incident report detailing the events of the incident - Support the maintenance and update of business recovery/contingency plans and/or procedures
Provide user support - Respond to user requests for technical assistance - Assess incident severity - Set clear user expectations on issue resolution - Update users on changes in status during issue resolution - Manage user accounts
Requirements
Diploma/Degree in Computer Science, Engineering or equivalent.
Minimum 6 years of experience in IT Security.
Experience in managing identify access management.
Good technical knowledge/experience in active directory.
Hands-on experience in managing security operations.
Experience in security technology like firewall, IPS, WAF, endpoint.
Knowledge of Cyber Security Laws, Personal Data Protection Act, Industry standards and information security policy framework.
Certified Information Security Systems Security Professional (CISSP) or GSEC will be advantageous.
Good team player with strong communication skills with project teams, stakeholders, senior management, and contractors including both technical and non-technical personal.