Senior Engineer – Cyber Security

• Identify security gaps, perform threat risk assessments in the current setup and propose mitigating measures.
• Work with vendors to conduct security assessments and penetration tests, standardize and refine security incident response and escalation processes.
• Mitigate and contain threats when detected; escalate security incidents and non-compliances on a timely basis.
• Monitor information security alerts, triage, mitigate and escalate issues as needed.
• IT security management for areas including network security, server security, application security, end point security, email security, physical access security, logical access security, etc.

Requirements

• Degree in Information Technology, Computer Science/Engineering or related fields with at least 5 years of related working experience in cybersecurity management and security governance.
• Strong knowledge on security risk management, security governance framework and compliance, technical vulnerability management, application security, security incident response and security assessment.
• Strong understanding of ISO 27001 standard and NIST Cyber Security Framework; experience going through ISO 27001 certification would be an added advantage.
• Proficient in IT Risk Management, Disaster Recovery, Business Continuity and Regulatory Compliance.
• Professional certifications would be an added advantage e.g. CISA, CISSP or CISM.