Job Description
Role Objective
The incumbent is responsible for operating and implementing IT security measures for the Client’s security appliances and solutions to control access and prevent unauthorized modification, destruction, or disclosure of confidential information, and maintain integrity and availability of systems and data.
Operational:
- Install, set-up, configure, and maintain security appliances according to the overall objectives and policies of the Client.
- Develop plans to safeguard the Client’s security appliances and components against accidental and/or unauthorized modification to data, disclosure of confidential information, and/or data corruption/loss.
- Develop security standards, baselines and procedures for security appliances, security devices.
- Monitor and review security violation SOC alerts, logs and reports on a regular basis to ensure that these are investigated, escalated to appropriate levels of management as necessary, and correctives actions are taken in a timely manner.
- Continuously assess security threats and vulnerabilities and provide recommendations to mitigate the same by ensuring security policies and procedures and control measures are implemented.
- Execute and implement the Client’s Information Technology policies and procedures, standards, and guidelines related to security of the network and communication software, hardware, and components, as well as monitor adherence to such policies and procedures, standards, and guidelines.
- Implement security solutions including building network & host security, file permissions, backup and disaster recovery procedures as well as system hardening requirements, access control management, system logging and auditing of security appliances.
- Ensure that critical data transmissions are encrypted and protected from unauthorized access and/or disruptions.
- Promote security awareness to employees by communicating security policies and procedures on a regular basis and monitor adherence to such policies and procedures, standards, and guidelines.
- Ensure the enforcement of security controls.
- Implement, update, maintain and monitor endpoint / server protection systems.
- Develop, implement, monitor, and maintain network security monitoring tools to help detect security threats and vulnerabilities in a timely manner.
- Assist in conducting vulnerability assessments, attack and penetration testing and risk assessments in relation to the Bank’s security infrastructure.
- Ensure high standards of confidentiality to safeguard commercially sensitive information.
- Provide timely and accurate information to the external and internal auditors and the Compliance function as and when required.
Educational Qualifications:
- University degree in Computer Science or Computer Engineering with specialization in Network Engineering and/or information security from a recognized university.
- Professional Certification such as CISSP, CCNP, CCSP, Paloalto, Fortinet is preferable.
Experience:
About 3-5 years of related experience in a similar position/responsibility, preferably in Baking IT security.
The candidate for the security operations required need to have the skillset in most of the following areas:
- Arbor APP DDOS / Arbor VOL DDOS
- Anti-Virus / EDR
- Intrusion Prevention Systems IPS
- NGFW Firewalls
- Email Digital Signature
- Endpoint DLP
- Network DLP
- Global Site Selectors GTM
- Load balancers
- APT / FireEye
- Hard Drive Encryption
- Infoblox / DNS firewall
- Email Security Ironport / Websesnse
- Network Admission control (NAC) Cisco ISE
- Mobile Device Management MDM
- Privilege access management TPAM
- OTP server / Vasco 2FA integration
- VPN S2S / VPN SSL
- Web Applications firewall WAF
- Web security URL filtering / Websense (Webproxy)
