Cyber Security Engineer

Contenuto del lavoro

• Monitor, maintain and fine-tune existing network & security infrastructure: Endpoint Security, Next Generation Firewall (NGFW), Encryption, email and network proxy gateways, Microsoft 365, DLP etc.

• Monitor, analyze and response to Information Security Incidents by working across teams (e.g.: infrastructure, application, other departments, etc.)

• Prepare and document security hardening standard, security incident response plan & playbook.

• Implement, conduct external and internal vulnerability scans, network penetration tests and application security tests as required.

• With minimum supervision, write incident reports, assessment-based findings, outcomes and propositions for further system security enhancement

• Support relevant projects, initiatives or security activities such as security awareness program, security incident response with relevant teams.

• Report on Security KPIs, vulnerabilities, non-compliance and other security exposures, including misuse of information assets and non-compliance.

• Conduct research, perform PoC to evaluate new emerging technologies and maintain up-to-date understanding of the latest threats, vulnerabilities, mitigation, industry best practices, regulations.

• Participate in projects involving IT systems and provide sound technical advice to ensure security principles are adhered to

• Other duties as assigned.

Pre-Requisites

• A proven track record as an Information Security engineer collaborating with teams internationally

• Hand on experience with security technologies such as NGFW, Endpoint Security, DLP, Proxy, Secure Email Gateway, Active Directory, Identity and Access Management (IAM), Microsoft 65, etc.

• General knowledge of industry best practices on security hardening, OWASP, network security, security risk & management frameworks, national cybersecurity standards, ISO27001, etc.

• Team player and able to collaborate across diverse stakeholders to achieve security objectives

• Excellent communication (oral, written, presentation), interpersonal and consultative skills

• Good problem solving and analytical skills and workshop facilitation skills

• Experience in working with high performance teams and understand the dynamics of international teamwork

• Ability to learn and understand new concepts quickly to keep up with new emerging technology

• It would be advantageous for you to have exposure to working directly for companies who have gone through extensive periods of change and / or a full-scale transformation programme in recent years.

• Data driven, with a continuous improvement mind-set acumen.

• Tertiary Education in Computer Science or related fields

• Minimum 3 plus years of progressive experience in computing and information security

• Experience in solutioning, architecting, implementing security solutions

• • CISSP, GIAC, CEH or other security certifications would be good