Job Summary
The Cybersecurity Engineer will be a critical member of the IT Infrastructure team and work closely with C-Level and cross-functional teams to develop processes and controls that improve efficiency, follow up corporate Security Policies and procedures, increase customer satisfaction and make user experience better. As an accomplished Service Delivery and IT Cybersecurity responsibilities, you will oversee core business and back-office operations including IT Cybersecurity Network, IT Hosting Services (Compute/Servers), Application Services, IT Cybersecurity Compliance.
Key Responsibilities:
• Providing subject matter expertise of Cybersecurity topics:
- Monitor & follow up Global Cybersecurity baselines
- Provide technical support to manage vulnerability management process (OS & Application)
- Follow up and management of Cybersecurity Standards by SIEM Process (Security information and event management)
• Role will provide technical level of Cybersecurity to support IT (day to day) and follow up the global security guidelines
• Follow up Cybersecurity procedures, process and IT Security frameworks directing the IT Operations with Internal teams and third-party services to reduce the risk in the infrastructure
• Risk and Compliance: Collaborate with management to oversee the lifecycle technology risk and evaluate technical risk associated with applications and technologies of IT.
• Follow up on Cybersecurity solutions based on audit recommendations and global industries guidelines (e.g. disaster recovery, business continuity management)
• Collaborate with the CIO Regional team to report vulnerabilities or risks associated with cybersecurity solutions, such as DDOS, Data Privacy or Data Classification
• Supervise and provide feedback about new cloud applications based on the Cybersecurity guidelines of the industry
• Provide analysis of Security Incidents, Problem Management based on the ITL framework.
Skills & Qualifications:
• Typically requires BS/BA in related discipline and 3+ years of Cybersecurity Technology Experience in related field or MS/MA
• Highest level expertise in Information Security field (preferred certification in CISSP, CISM, and any relevant industry recognized security certification)
• Ability to identify security risks and develop effective mitigation plans for web applications
• Experience working with web applications and browser security; security assessments and penetration testing; identity and access control; applied cryptography and security protocols; security information and event monitoring and intrusion detection
• Professional certification or similar: Certified Information Systems Security Professional (CISSP), Certified Information Systems Auditor (CISA), Certified Information Security Manager (CISM), Certified Ethical Hacker (CEH), Systems Security Certified Practitioner (SSCP), ITIL v3/4, Cloud (IAAS, PAAS,SAAS), Linux/Windows Server
• Experience implementing IT Security hardening processes in IT Applications.
• Skilled in communicating conceptual and technical information both verbally (on phone, one-on-one, to groups) and writing (reports & presentations) to various audiences (work group team, management, senior leadership)
• Basic project management/networking abilities bringing together groups from different areas of the business.