Job Details
Experience Needed:
Career Level:
Education Level:
Salary:
Job Categories:
Skills And Tools:
Job Description
Purpose
Responsible for the implementation and execution of the firm’s information security programs.
Responsibilities
- Responsible for reviewing system logs and incidents on a daily basis and handling the investigation to avoid potential incidents.
- Participate in the day-to-day administration and management of information security tools as well as third-party managed security service providers.
- Implement and monitor threats and vulnerability management processes, inclusive of vulnerability scanning and remediation efforts, monitoring of CVE and vendor notifications, etc.
- Conduct regular audits using tools such as vulnerability scanners, IDS /IPS, SIEM and Anti-virus.
- Audit all directory services and privileged accounts on a regular basis to avoid any improper privileges.
- Ensure that all information security policies and procedures are applied across the firm.
- Conduct in-house penetration testing and code-reviews of prospering applications and platform to ensure their compliance with international security standards.
- Conduct regular security assessments of internally developed applications to generate security reports to assess needs and security enhancements requirements.
- Implement solutions for monitoring applications security logs, end-point application whitelisting, network and host-based forensic readiness, DoS/DDoS mitigations, Database access monitoring solutions, PKI Implementations etc.
- Provide level 3 support for information security tools and operational processes.
Job Requirements
- Bachelor’s degree in Computer Engineering, Computer Science or equivalent.
- A minimum of 3 years’ experience in the area of information security.
- Knowledge of technology platforms, inclusive of systems, network devices, and security solutions.
- Experience in Windows, Linux, enterprise network and network security devices, relational databases, and other core enterprise technologies.
- Fluent in one or more scripting languages (e.g. Powershell, VB, WMI, Python, Ruby).
- Knowledge of network design and management and OSI Model & TCP/IP stack.
- Good command of Arabic and English.
- Good communication skills (written, verbal and listening).
- Able to build partnerships and work well in teams.
- Can identify, recommend and implement solutions for problems. Capable of making timely decisions and anticipating consequences.
- Ensure deliverable are always of a high quality.
- Strong quantitative and analytical abilities.
- Excellent attention to detail.