Strong knowledgeable of current advances in all areas of information technology concerning vulnerabilities, security breaches or malicious attacks
Continuously evaluate/audit communication security, data vulnerability, business continuity and compliance risks
Identify vulnerabilities or weaknesses in systems and processes
Examine employee compliance with security controls and deficiencies
Evaluate security policy, processes and procedures for completeness
Ensure that controls are adequate to protect sensitive information systems
Report to management on system vulnerability and protection against malware and hackers
Clearly document and define risks and potential impacts along with the statistical probability of such an event and identify systems affected by the defined risk
Provide mitigation/ damage reduction proposals with cost justification
Assist in identifying breaches in Information Security or tracking the source of an unauthorized intrusion.
Identify defensive steps to take, including necessary firewalls, security software and data encryption
Recommend all infrastructure and applications patching and remediation be done
Logging and coordinating the identified vulnerability management and tracking the remediation of risks associated with critical/sensitive information, systems, services and processes
Working knowledge of Information Security Risk Management
Proven experience in Information Security Risk Management processes
Working knowledge of security frameworks/standards e.g. ISO 27001, COBIT or NIST Cybersecurity Framework
Mentor and coach junior members of the team
Certified in CRISC/CISSP/CISA/CISM/CGEIT
Beware of fraud agents! do not pay money to get a job
MNCJobz.com will not be responsible for any payment made to a third-party. All Terms of Use are applicable.