Job Description
You will be a member of the Group Information Security Team responsible for initiating, implementing and maintaining security products and solutions to support enterprise security.
Key Responsibilities
- Subject matter expert (SME) for the security systems owned by the Information Security Team.
- Ensure security systems are utilised to their maximum capabilities.
- Plan, identify, assess, design, operationalise and maintain multiple security related software and/or hardware.
- Recommend and drive cyber security solution and initiatives to improve cyber security of the organisation.
- Prepare RFQ and evaluation criteria. Proof of concept (POC) during product evaluation. Liaising with vendors to implement security solutions.
- Provide security consultancy, technical guidance, expertise, solutioning and education.
- Advise infrastructure teams on security design that is relevant and fit for purpose.
- Identify and assess cyber risks in the IT infrastructure environment.
- Review firewall requests.
- Keep up to date on emerging security threats and vulnerabilities on new platforms adopted by the SIA Group and propose mitigating controls.
- Any relevant ad-hoc duties. Manage individual project priorities, deadlines and deliverables.
- This is an individual contributor role. Deliver tasks with minimal supervision.
- Strong communication skills.
Requirements
- Degree in IT or related field, with at least 5 years in information security, especially in the application security space.
- Professional security certifications (CISSP, CSSLP, CEH etc) preferred.
- Experience in security products POC and RFQ.
- Prior experience in implementing and maintaining any of tools for EDR, XDR, SOAR, SIEM, UEBA, PAM, AM etc. and/or network security. Able to review firewall requests.
- Technical proficiency in one or more of the following security areas: network design, zero trust, Internet of Things, cryptography etc.
- Familiar with common web/mobile application vulnerabilities and technical knowledge to address and mitigate vulnerabilities. Any prior vulnerability management experience preferred.
- Knowledge of cyber security threats, vulnerabilities, hacking and exploit methods etc.
- Strong oral, written, presentation and inter-personal skills.
- Possess positive attitude with drive, initiative, enthusiasm, and a keen sense of urgency in resolving high-priority issues.
- Able to work independently and in a team-oriented, collaborative environment.
