Cyber Security Consultant

Bachelor of Science (Computers, Technology)

Nationality: Any Nationality

Vacancy: 1 Vacancy

Job Description

1. WAF Implementation and Management
   Oversee the configuration and management of F5 Web Application Firewalls (WAF) to protect digital assets.
   Perform regular reviews and updates of WAF policies and rules based on evolving threats and application changes.
   Collaborate with development and IT teams to resolve false positives and optimize WAF performance.
2. Proxy Management
   Implement and manage Forcepoint Proxy to control and monitor web traffic.
   Regularly assess proxy configurations to ensure adherence to security policies and prevent unauthorized access.
   Collaborate with IT to troubleshoot proxy-related issues and optimize performance.
   Utilize Forcepoint DLP to implement data protection strategies and prevent data leaks.
   Conduct risk assessments to identify data loss vectors and implement controls.
   Develop data classification and handling guidelines with relevant departments.
3. Vulnerability Assessment and Penetration Testing (VAPT) Coordination
   Plan, coordinate, and conduct regular VAPT activities for web and mobile applications.
   Analyze findings from VAPT and provide actionable recommendations for risk mitigation.
   Engage third-party security vendors when necessary and ensure testing aligns with industry best practices.
4. Internal Security Assessments
   Conduct security assessments and audits on internal applications and systems, especially in the digital domain.
   Develop assessment plans, perform risk analysis, and provide clear reporting on assessment results and remediation plans.
5. Compliance and Documentation
   Ensure compliance with industry standards, regulations, and internal policies.
   Document security processes, incident responses, and findings from assessments and tests.
   Maintain updated records of digital security protocols and practices.
6. Collaboration and Stakeholder Management
   Work with IT, development, legal, and compliance teams to implement and monitor security controls.
   Serve as the primary point of contact for coordinating security assessments with stakeholders.
   Conduct training and awareness sessions on security best practices for relevant stakeholders.

Desired Candidate Profile

• 5+ years of experience in cybersecurity, specifically in WAF, Proxy, DLP, VAPT, and security assessments for web and mobile applications.
• Proven track record in coordinating VAPT activities and managing third-party security vendors.
• Experience with Forcepoint Proxy and DLP, F5 WAF, and VAPT tools (e.g., Burp Suite, OWASP ZAP).
• Familiarity with security standards and frameworks (e.g., OWASP, ISO 27001, PCI-DSS).
• Understanding of vulnerability scanning, risk assessment methodologies, and secure coding practices.
• Optional: Knowledge of DevSecOps practices and tools is a plus.
• Strong communication and coordination skills to work effectively across departments.
• Analytical mindset and problem-solving abilities.
• Ability to document findings and communicate in both technical and non-technical terms.

Qualifications and Skills:

• Educational Background: Bachelor's degree in Computer Science, Cybersecurity, Information Technology, or a related field. Relevant certifications (e.g., CEH, OSCP) are preferred.