Job
Description
Ability to champion significant Information Security projects, ensuring alignment with industry standards and practices Train members of the Information Security Team on information security tools, technologies and concepts Lead and coordinate with third-party vendors and consultants to ensure effective implementation of security measures Proactively monitor and identify vulnerabilities within our systems, informing relevant teams to facilitate risk management and resolution efforts Participate in vulnerability scanning across the organizations network, systems, and applications, ensuring timely identification and remediation of security risks Act as the primary contact for information security initiatives and provide thought leadership across multiple disciplines, influencing best practices within the technology and security community Recognized as the go-to person for complex cybersecurity assignments, providing guidance and support to internal teams and stakeholders Qualifications: Strong understanding of cybersecurity standards, practices, and policies Hands on experience with Security Technologies such as SIEM, Secure web gateway, mail protection, endpoint protection / EDR, WAF, Identity & Threat protection, etc. Hands on experience of security tools implementation including initial setup, configuration and managing daily operations Experience with Windows, Linux, and MacOS architectures Knowledge of security best practices for on-premises virtualization (VMware) and multiple cloud platforms (e.g.: Azure, GCP, AWS) Understanding of network concepts and protocols, including monitoring logs for anomalous activity Proven experience in leading projects and managing vendor relationships Excellent communication skills, with the ability to assertively address Information Security challenges Familiarity with risk analysis and mitigation methodology, security policy and procedure development, incident response and handling, security training and awareness Hands on knowledge of incident response (investigating BEC, phishing, etc.) Hands on experience on reviewing and analyzing IIS and/or Kubernetes logs for threat investigation Technical/Domain Skills: Security related certifications (e.g., CISSP, CISM, or equivalent) Scripting and automation capabilities via tools like: Python, Bash, PowerShell, API Active engagement in Information Security communities, keeping apprised of the latest tools, technologies, and threats
