Experience in effectively managing small teams, contractors and working in cross functional teams. You will be part of the growing Cyber Security team that plays a critical role in securing for the company's projects and operations. You will help to define the security requirements, develop a set of security practices and enhancements, be involved in vulnerability assessment, troubleshooting and diagnosing problems and serve as escalation point for security issues. You will also take on projects from time to time. Reporting to the Director of Technology and Operations, you will have the following responsibilities: What to Expect: Formulate and enforce IT security framework and management processes which includes security policies, procedures, standards and guidelines. Lead the Cyber Security team daily security operations including the administration and maintenance of user account management, security vulnerability management, security monitoring and incident response. Perform cybersecurity risk assessments and propose mitigating measures. Review the security process and procedures to be updated with actual practices. Lead the security incident response actions during security incidents. Lead and manage the deployment cybersecurity capabilities Liaise with third party security assessors performing security reviews and penetration testing. Review and enhance controls against possible lessons from external incidents and emerging cyber risks. How to Succeed: Bachelor Degree / Diploma holder in IT / information security or equivalent. 7 or more years of experience in IT, of which 5 years hands-on in information security domains. Knowledge and understanding of public key infrastructure, cloud technologies, cybersecurity, risk management, security framework and methodologies for controls, compliance and auditing such as NIST, ISO 27001, Center for Internet Security (CIS) Benchmark. Candidate with security certification such as (ISC)2 CISSP or CCSP, ISACA CISM or CISA will be an advantage. Experience in effectively managing small teams, contractors and working in cross functional teams. Experience in enterprise data center operations or information security office an advantage. Demonstrate strong technical foundation and willingness to learn new technology and approaches.
