Information Security Engineer

Job Ref #: FI 09

Industry: Information Technology

Job Type: Permanent

Salary: Market Related

Description:

RESPONSIBILITIES:

Enhance and continuously improve the current information security strategy and practices

Apply a security framework, and ensure that it is being adhered to

Build and manage IT security governance (Policies and Processes)

Oversee information security audits, whether performed by organization or third-party personnel

Drive security within the Infrastructure and IT technical teams, including access controls for the production environment, dev environment, internal systems and data warehouse.

Continuous security control validation

Upskilling of the security team

Management of the Vulnerability Management Program

Optimization of current security toolsets

Cyber incident response management

Secure configuration of enterprise assets and software

Key account management / relationship management of info security software suppliers

Access control management

Network infrastructure management

Proactively research and implement new detection technologies and methodologies

Manage the assessment of the current technology architecture for vulnerabilities, weaknesses and for possible upgrades or improvement (Through external 3rd Party audits/reviews)

Implement and oversee remediation, improvements and fixes to the information security environment from items picked up through audit work

Communicate information security goals and new programs effectively with other department managers within the organization

Develop and provide appropriate awareness training / plans and communication

Requirements:

MINIMUM REQUIREMENTS:

BSc in Computer information science / BTech in IT / BTech in Information Security

Relevant certification (CISM, CISA, CRISC)

Exposure to cyber risk frameworks (NIST, ISF, Iso27001/2, FFIEC)

Azure administration related certification and Office 365 administration certification required

4+ years in information security, computer, information science, 1+ year in Azure environment

SKILLS:

Cloud security (Mobile, Azure and M365)

Understanding of encryption and key management standards

Understanding of Microsoft server infrastructure environment

Understanding of Business continuity and high availability requirements of a 24 hour Fintech Business

Identity and access management

Malware analyses

Incident management

Managing of 3rd party service providers

Penetration testing, Threat & Vulnerability Management

Risk management and Analyses

SIEM tools (Security information and event management) Governance, legal compliance and audit assurance

Configuration of firewalls

ATTRIBUTES:

Attention to detail, analytical and diagnostic skills

Creative thinking and problem solving

Works well under pressure

Ability to work in a team and independently

Interpersonal skills

Good communicator

Deadline driven

Ability to implement policies

Policy writing skills (will also be considered and can assist)

Attention to detail.

Embrace and adapt to change.

Accountable and responsible.