Description
Data Loss prevention: Operate a process to provide weekly analysis and reporting on alerts raised by the companies' enterprise data loss prevention tools to relevant stakeholders.Vulnerability Management: Perform regular vulnerability scans against core internal and external infrastructure.
Patch Management: Operate a process to research and prioritize security patching of core infrastructure with infrastructure stakeholders.
Firewall Management: Review router, firewall and DMZ proposed rule changes to ensure that a proper security configuration is maintained.
Intrusion Detection: Establish and operate a process to manage operational aspects of the outsourced IDS/IPS service and drafting regular incident reports to relevant stakeholders.
Encryption: Manage the process to grant, revoke, recycle encryption keys and take full operational control of the in house encryption technologies.
Change Management: Establish and operate a process to action security change requests for a number of key areas including user access, firewall changes.
Metrics: Track and quantify the above work streams for management reporting. Further assist in the preparation of risk reports to management.
Participate in a program of process improvements to ensure that always maintains a secure environment for its infrastructure, systems, applications and data.
Assist in infrastructure architectural reviews on new and proposed projects, provide recommendations and work with stakeholders to develop a solution.
In order to qualify for the role the candidate will need a Bachelor's degree in Information Technology or in a related field OR, the equivalent combination of education, training and experience.
5yrs+ experience of working in an Information Security team, with hands-on operations experience, preferably within the financial services sector.
The following skills and experiences are a must for this position:
Working knowledge of IT security best practices and configurations as used in desktop, server, and network configurations.
Experience of monitoring security threats, analyzing vulnerability assessments, and balancing security with business rules/needs.
Experience of working with other IT professionals to resolve fast-moving vulnerabilities such as spam, virus, spyware and internet filtering.
Experience of auditing or monitoring routers, firewalls and DMZ services to ensure that a proper security configuration is being used.
Experience of documenting status reports, plans, policies, procedures and presentations.
Experience of working in security-related IT projects using project management and software tools.
Ability and willingness to work extended hours or modified schedule for planned or emergency work.
Ability and willingness to travel to and work at various Company locations if required.
If you are interested in getting a kick start in your career and joining an amazing company apply to Joseph Amanna at Huxley Associates.
To find out more about Huxley Associates please visit www.huxley.com