IT Security Specialist

Job Description:

- Act as the last level of escalation for the team members

- Own Incident, Problem and change management process for the team

- Assigns technical tasks and manages delegation

- Animates the team to encourage collaboration and sharing of practices

- Participates to recruitment process for the team

- Is actively involved in incident management (fault investigation, resolution

- Escalations of all monitoring alerts and user initiated problem calls/tickets) and request management

- Is the final technical approver for any changes into Data Security systems and is accountable for any technical changes in the environment from a RUN/BAU perspective

- Is involved in projects like End of Life, New Builds, migrations and technical upgrades of the solution managed by the team

- Participates in global Infra events (like Power down and DR Tests)

- Ensures activity is performed in compliance with norms, standards, processes and procedures

- Gathering required evidence using multiple forensic tools to investigate any data leak incident, conducting interrogation if required, case closure and reporting

- Ensures documentation is up to date and relevant for use

- Lead the continuous improvement initiatives

- Responsible to drive and deliver root cause for any high severity issues

- Focus on automation and optimum use of the team to improve efficiency

- Maintain appropriate knowledge to ensure to be fully qualified to undertake the role.

- Complete all mandatory training as required to attain and maintain competence

- Comply with all applicable legal, regulatory and internal Compliance requirements, including, but not limited to, the Singapore Compliance manual and Compliance policies and procedures as issued from time to time

- Financial Security requirements, including, but not limited to, the prevention of Financial Crime and Fraud including reporting obligations to the Money Laundering Reporting Officer.

Requirements:

Functional

- 8 - 10 years of IT Security experience in administration and management of IT Security technologies primarily Symantec Data Loss Prevention, Symantec Endpoint Protection, Email Security, Data Classification and other endpoint & data security solutions

- Should be a bachelors/masters/engineering graduate or equivalent technical degree in Information Technology or Computer Science

- Knowledge of different domains of IT Security

- Working & hands-on experience in administering the IT Security Solutions

- Must have experience in working in similar Production setup in Run (Operations) mode

- Ability to apply risk based approach while working on assigned responsibilities

- Experience in defining, implementing, and enforcing enterprise-level IT security policies for endpoint and data security solutions

- Must have working experience in managing endpoint security solution for a Large enterprise level environment, working experience in financial organization is preferred

- Excellent in analytical, communication and documentation skills

- Ability to organize work and be able to priories work as per the needs of Production Operation's needs

- Must have strong understanding of ITIL processes and comfortable working in process oriented environment

- Ability to work independently and as well as a part of team and is able to work under minimal supervision

- Should have time management skills and able to manage work in fast moving environment

Technical:

- Hands-on experience on Symantec Data Loss Prevention (DLP)

- Highly proficient in data leakage prevention (DLP) technologies - troubleshooting and configuration management

- Deployment, integration and administration experience of various components of Symantec DLP:

- Must have experience in defining, designing and configuring DLP Policies as per the business requirements

- Deploy, upgrade and troubleshooting knowledge on Symantec DLP solution

- Scripting knowledge (Phyton, Regular Expression, Powershell) is desirable

Professional Certifications:

- CISSP certified is highly preferred

- Symantec Certified Specialist: Administration of Data Loss Prevention (any version) is highly preferred.

- Must be experienced to cover the scope as mentioned in the SKILLS MATRIX section of this document.