Job Description
Key Roles & Responsibilities :
Functional Role
Operational Responsibilities :
- Monitor security devices for anomalies and security issues.
- Alert, report and investigate security breaches and other cyber security incidents.
- Manage and Monitor deployed security solutions, information infrastructure, including firewalls and data encryption programs.
- Document security breaches and assess the damage they cause.
- Work with the security team to perform tests and uncover network vulnerabilities.
- Provide technical recommendations to fix detected vulnerabilities in order to maintain a high-security standard.
- Stay current on cyber security trends and news.
- Perform penetration testing/deep analysis and investigation predating to information security/cyber security alerts/incidents.
- Research security enhancements and make recommendations to management.
- Stay up-to-date on information technology trends and security standards.
- Monitor security function related to the corporate information system, working closely with the IT department of information security.
- Evaluate changes to the corporate environment for security impact and present finding to management.
- Leverage on Security Operations Centre Exposure and corporate security solution stack
- Developing and maintaining Security Operations Centre and facilitating bank in handling the advanced targeted attacks.
- Assisting in developing and maintaining information security policies and procedures,
- Security incident reporting and analysis,
- Deputizing for the Lead Information Security Administrator and/or Information Security Specialist
- Ability to analyze the new security technologies and adapt to ever-changing threat landscape and act vigilantly in a proactive manner.
Qualifications & Experience
Required Qualifications : University degree with specialization in Cybersecurity/Information Security or IT or Computer Science
Technical Certifications
- Offensive Security Professional certifications / Any SANS Certifications such as OSCP, OSCE, GCIH, GPEN, GNFA or CEH, CHFI
- Technology specific certifications pertaining to above (7)
Domain Certifications : CISSP and CISM/CRISC/CISA, CIPM, ISO 27001LA
Mandatory Experience
- Minimum 5-6 years of security experience of which a minimum of 2-3 year should be in a similar position / responsibility.
- L2/L3 role experience would be an advantage.
Technical Competencies
Skills, Knowledge and Expected Behaviors against Values Competencies :
- Knowledge of Department Priorities,
- Products, and the QDB strategy (2)
- Knowledge of QCB Regulations (3)
- Information Security Management (3)
- Information Security Tools and Solutions
MUST Be Proficient In Handling The Following Platforms
- SIEM
- SOAR
- DLP/Data Classification/DRM
- XDR (NDR + EDR)
- BAS (Breach and Attack Simulation)
- VMS (Vulnerability Management Systems)
- NGAV
- Sandbox / Al
- TIM/TIP (Threat intelligence Management/Platform)
- Deception/Honey Pots
- Microsoft
- OSINT tools
- Cloud Security Architecture
- Application Security
- Security Products
Soft Competencies
- Microsoft Office Skills (Excel and PPTs)
- High Quality Report Development
- Information security standards/Framework, ISO 27001, MITRE, OWASP, QCSF FIFA 2022,
- Awareness Presentation Skills for mass audience
- Problem Solving & Decision-Making Abilities
- Adaptability with team and other departments
- Ability to speak security jargons in simpler terms
(ref:hirist.com)