REQ11786 Analyst, Information Security (Open)

POSITION SUMMARY:

The Analyst, Security Architecture and Technology, Information Security drives the security architecture and technology review in order to identify potential risks. Evaluates the organization’s security postures in order to provide recommendation to the management team. Configures and troubleshoots security tools according to the company policy and best practices.

PRIMARY RESPONSIBILITIES:

Assists in strategic information security planning, based on industry-standard best practices to achieve business goals by prioritizing defence initiatives and coordinating the evaluation, deployment, and management of current and future information security technologiesAdministers cyber security tools on premise and cloud, such as DLP, Web Security Gateway, Vulnerability Management, Server Policy Compliance Management, PIM/PAM, IAM, Endpoint Management, AV, EDR, APT, CASB, Email Security etc.Participates in evaluating, planning, and implementing of new cybersecurity technologies and systemsCreates, identifies, and enhances processes that may leverage new or existing technologies to improve protection or reduce riskPerforms periodic and on-demand system audits and vulnerability assessmentsParticipates in developing, implementing, and assessing data security procedures and controls to ensure compliance with applicable regulatory and legal requirements, such as SOX, and ISO27001, GDPRParticipates in maintaining information security and risk management policies, procedures, and technical standards to support corporate objectivesRemain informed on current standards, trends, and issues in the information security industry

QUALIFICATIONS:

Experience

Minimum 3 years of relevant experience in Information Security and Cyber SecurityExperience with security tools such as DLP, Web Security Gateway, Vulnerability Management, Server Policy Compliance Management, PIM/PAM, IAM, Endpoint Management, AV, EDR, APT, CASB, Email Security etc.Experience with multiple operating systems security: Windows Servers and Clients, Linux, and UnixSolid understanding of network design, architecture, OSI model and TCP/IPExposure to Cloud computingKnowledge of Web and application-based securityKnowledge of encryption, such as PKI, SSL/TLS, Data at Rest

Education

Bachelor’s degree in Management Information System, Computer Science, or related disciplinesCertification in Information Security (e.g., CISSP, CISM, CISA, CCSP etc) will be considered as an advantageSecurity tools technical certificates from vendors will be considered as an advantage

Skills / Competencies

Good communication skill on report writing and presentationAble to work independently and cope with result-oriented demandEffective organizational and time management skills requiredWell organized and detail-oriented on delivering the assigned taskCommit and strong sense of responsibility to the role and the teamAbility to identify, analyse and address problems to resolve issues whenever possible in a way that minimizes negative impact and risk to the organizationStrong analytical skills/problem solving/conceptual thinking

PERSONAL COMPETENCIES:

Displays a high commitment to delivering resultsCommunicates effectivelyAchieves agreed objectives and accepts accountability for resultsDisplays the highest level of integrityAbility to maintain discretionSelf-motivatedApproachable