Senior Cyber Security Engineer

Responsibilities:

1. Security Audits & Risk Management:

• Conducting security audits to identify vulnerabilities and weaknesses in existing systems. Analysing risks and recommending appropriate security measures to mitigate threats

2. Security Communication & Awareness:

• Communicate the cybersecurity program's risks and initiatives clearly and concisely to diverse audiences, including senior management.
• Build strong relationships with managers across the organization to foster a culture of security awareness and compliance.

3. Strategic Alignment & Compliance:

Proactively engage with senior management to align cybersecurity strategies with business objectives.

Continuously review compliance programs in place, ensuring they effectively address key risks and comply with ISO/IEC 27001 and global standards.

1. Collaboration & Solutions:

• Collaborate with cross-functional teams, including Engineering, Product, Cloud Security, Legal, Privacy, and Corporate Security (ISMS Team), to develop pragmatic solutions to complex security risks and compliance issues.

2. Threat Monitoring & Response:

• Monitor and proactively identify potential security threats with a detail-oriented and proactive approach.

3. Technical Expertise:

• Proficient in network troubleshooting, firewall administration, and network protocols.

4. Vulnerability Assessment & Penetration Testing:

• Employ strong analytical skills to conduct vulnerability assessments and penetration testing.

5. Risk Quantification & Mitigation:

• Consult with various units to determine, quantify, and mitigate risks in client and industry relationships.

6. Continuous Security Monitoring & Assessment:

• Assess metrics, monitor procedures, and conduct various security assessments to ensure ongoing protection.

Qualifications

• Candidates should have 10+ years of working experience from the IT Industries
• Knowledge of the ISO 27001 standards
• Extensive experience in cybersecurity program management and a proven track record of success in a similar role
• Strong understanding of and experience with regulatory compliance standards and frameworks
• Excellent communication and relationship-building skills, with the ability to engage effectively with all levels of the organization
• Detail-oriented with a proactive approach to identifying and mitigating potential security threats
• Proficient in network security, firewall administration, and network protocols
• Analytical mindset capable of conducting thorough vulnerability assessments and penetration tests
• Ability to provide sound advice and solutions to complex security issues
• Good to have knowledge on multiple cloud services

Reports To

Position equivalent to Chief Technology Officer / Director of IT / Director of Technology.