Job Ref #: FI 09
Industry: Information Technology
Job Type: Permanent
Salary: Market Related
Description:
RESPONSIBILITIES:
Enhance and continuously improve the current information security strategy and practices
Apply a security framework, and ensure that it is being adhered to
Build and manage IT security governance (Policies and Processes)
Oversee information security audits, whether performed by organization or third-party personnel
Drive security within the Infrastructure and IT technical teams, including access controls for the production environment, dev environment, internal systems and data warehouse.
Continuous security control validation
Upskilling of the security team
Management of the Vulnerability Management Program
Optimization of current security toolsets
Cyber incident response management
Secure configuration of enterprise assets and software
Key account management / relationship management of info security software suppliers
Access control management
Network infrastructure management
Proactively research and implement new detection technologies and methodologies
Manage the assessment of the current technology architecture for vulnerabilities, weaknesses and for possible upgrades or improvement (Through external 3rd Party audits/reviews)
Implement and oversee remediation, improvements and fixes to the information security environment from items picked up through audit work
Communicate information security goals and new programs effectively with other department managers within the organization
Develop and provide appropriate awareness training / plans and communication
Requirements:
MINIMUM REQUIREMENTS:
BSc in Computer information science / BTech in IT / BTech in Information Security
Relevant certification (CISM, CISA, CRISC)
Exposure to cyber risk frameworks (NIST, ISF, Iso27001/2, FFIEC)
Azure administration related certification and Office 365 administration certification required
4+ years in information security, computer, information science, 1+ year in Azure environment
SKILLS:
Cloud security (Mobile, Azure and M365)
Understanding of encryption and key management standards
Understanding of Microsoft server infrastructure environment
Understanding of Business continuity and high availability requirements of a 24 hour Fintech Business
Identity and access management
Malware analyses
Incident management
Managing of 3rd party service providers
Penetration testing, Threat & Vulnerability Management
Risk management and Analyses
SIEM tools (Security information and event management) Governance, legal compliance and audit assurance
Configuration of firewalls
ATTRIBUTES:
Attention to detail, analytical and diagnostic skills
Creative thinking and problem solving
Works well under pressure
Ability to work in a team and independently
Interpersonal skills
Good communicator
Deadline driven
Ability to implement policies
Policy writing skills (will also be considered and can assist)
Attention to detail.
Embrace and adapt to change.
Accountable and responsible.