Job
Description
IT Services provides secure, fast, innovative and green infrastructure capabilities to meet evergrowing customer demand. Our teams thrive on building capabilities across areas of Cloud Migration, Dev Ops, Network and Information Security amongst others. Job Summary Information Security Engineer will monitor computer networks for security issues and investigate security breaches and other cyber security incidents. Install security measures and operate software to protect systems and information infrastructure, including firewalls and data encryption programs. Work with security team to perform tests and uncover network vulnerabilities. Fix detected vulnerabilities to maintain a high-security standard. Document security breaches and assess the damage they cause Competencies: Follow ITIL practices regarding incident, problem and change management and use domain knowledge to improve/enhance the work output of ISO team Providing guidance and support to technical teams on security standards and industry best practice Performing security operations and maintenance using security tools Manage and assist in performing on-going security monitoring of information systems including assessing information security risk through qualitative risk analysis on a regular basis Assessing the impact of emerging threats and managing teams to co-ordinate appropriate remedial actions Evaluating and recommending new information security technologies and counter-measures against threats to information or privacy Designing and implementing dashboards and data visualizations for various stakeholders and escalate problems to the respective authority when needed Ensuring that disaster recovery and emergency operating procedures are in place and tested on a regular basis - Conducting risk analysis to identify critical operations and systems that are core to continued business operations in the event of a disruption Applying professional judgment in complex situations and handle effectively multiple tasks, initiatives and priorities Technical Skills: Understanding of basic network services, vulnerabilities and attacks Good knowledge of cryptography, application security, access control, malware, exploits and vulnerabilities Internet security, networking protocols, and related technologies, including IDS/IPS, firewalls such as Cisco, PaloAlto, etc, content filtering, and packet inspection Knowledge on Cloud technology and concepts Basic knowledge of any scripting languages or automation OS Concepts Windows, Linux and Unix server platforms Security managements tools and applications - Intrusion Prevention System : Sourcefire, AV : Symantec, Vulnerability Assessment via Qualys and WebInsepct, SIEM : ArcSight, Threat Detection via Vectra, Ticketing/ Change Management via ServiceNow, FireMon Monitoring platforms, Microsoft Infrastructure applications Other tools - AV and Malware analysis tools, Opensource Scanning tools, reporting tools, threat intelligence feeds, others Developing and maintaining network and data security capabilities used by the Information Security Operation (ISO) team Driving the development and ongoing tuning and optimization of security event monitoring and analysis application platforms Assisting in establishing and supporting enterprise policies, processes, and standard Service level agreement levels Educational Qualification and Experience: Minimum of 15 years of formal education - Graduate / Post Graduate in Computer Science / Information Technology. Professional work experience of 4 to 9 years.
