Cyber Security Lead

QUALIFICATION: Engineering Degree/Diploma (Computers / Electronics)

CERTIFICATIONS: CISSP (Mandatory) CCSP

EXPERIENCE: 12+ years of IT security operations and governance. Proven experience as a Cyber Security Advisor or Lead Information Security

RESPONSIBILITIES (INCLUDES ALL TASKS):

• Sound understanding of Security Technologies and Methodologies for Enhancing the Cybersecurity Landscape of the organization.
• Expert in Infrastructure and Application Security, OSI Layer and Techniques / Technologies available toprotect different layers.
• Experienced in Vulnerability Management, Penetration Testing reviews, Malware Protection, Data Security,Web Application Security and Network Security.
• Good Understanding of standard and Regulations, including NIST, NESA, ISO 27001:2022.
• Good Knowledge on compliance Audits, Risk Assessment and Management
• Knowledgeable in DNSSEC, Cryptography, hardening procedures and Baselines, Windows and Linux OS.
• Security Awareness trainings.
• Security Incident Management and SOC Governance.
• Hands-on experience in the following: o Perimeter Security solutions like F5, Palo Alto & Fortinet firewalls, Next Generation IPS, Email and Web Gateways.
  o Security reports and incidents based on Imperva Database Activity Monitor (DAM), File Integrity Monitor (FIM), Tenable Vulnerability Scanner.
  o Access Management Solutions for PAM, PIM & IAM Data Protection technologies like Forcepoint DLP, Boldon James Classifier & Seclore DRM.
  o Content Filtering Technologies of CDR Technologies.
  o Endpoint Protection Suite from Trend Micro Apex One & Deep Security.
  o APT Suite from Trend Micro DDI & DDAN. Cryptographic Key Management solutions from Thales HSM
• Support and lead team to Operate, troubleshoot and maintain security infrastructure software and hardware for escalated issues and regular upgrades.
• Develop and implement security policies, procedures, and controls.
• Security Incident & Problem Management with strict adherence to SLAs
• Risk, Vulnerability Management and Reporting
• Manage and monitor the organization’s cyber security systems and infrastructure.
• Track the performance of security measures to protect information of network infrastructure and computer systems.
• Define KRI and KPI as per agreement and provide weekly updates to stakeholders on progress and dependencies.
• Educate and train staff on information system security best practices.
• Work closely with SoC to monitor and manage Events to Incident conversions. Take actions within stipulated SLAs to close all Incidents.
• Comprehensive reports including assessment-based findings, outcomes, and propositions for further system security enhancement. Prepare and document standard operating procedures and protocols

TECHNICAL SKILLS /COMPETENCIES: MANDATORY
Strategic Thinking

• Should be able to envision long-term technical direction of the organization and create a compelling strategy to achieve the vision.
• Ability to align technical initiatives with overall business goals and articulate technology to drive innovation and growth. Cross Functional Collaboration
• Ability to work collaboratively with all departments including Customer and Internal Stakeholders
• Team Building and Nurture high performing teams. Decision Making
• Possess strong Analytical and Technical problem-solving skills to make informed decisions.
• Able to work under pressure, balance technical constraints, project goals, business goals to make critical decisions.
• Adept at handling constructive conflict resolution within the teams or between team members & other stakeholders and derive mutually beneficial outcomes.

Ethical Leadership

• Should set high standards of Integrity and lead by example in their actions and decisions.
• Should showcase resilience to bounce back from setbacks and handles stress effectively. Accountability & Result Driven
• Should set clear goals and expectations, track progress and take corrective actions when necessary.
• Agile thinking with adaptability to adjusting strategies and tactics for achieving desired outcomes.

SOFT SKILLS: MANDATORY: Good communication skills