The Analyst Cybersecurity Engineering role is accountable to look after the global cybersecurity tools. As a key member of the global Cybersecurity team, this role will support the development, implementation, and maintenance of group-wide cybersecurity tools and governance to ensure best practice control objectives are achieved for system and data integrity, availability, confidentiality, accountability, and assurance.
As the Analyst Cybersecurity Engineering, you will draw on your technical and leadership experience to deliver against the following responsibilities:
• Cybersecurity and Risk Management
• Deploy and maintain cybersecurity tools
• Develop automation, have programming and data science skills
• Leverage artificial intelligence to optimize tools and data
• Support critical cybersecurity areas including incident response, recovery readiness, awareness, monitoring, and remediation management as it relates to the business unit/region
• Perform threat analysis and recommend containment and eradication actions
• Perform cybersecurity assessments and recommend risk aligned security control requirements
• Support the development, localisation, implementation, and maintenance of cybersecurity governance framework
• Champion the development and execution of Cybersecurity Awareness programs required to drive a cyber aware culture in their respective region/business unit
• Accountable for the identification and management of material cybersecurity control gaps associated with the technology environment in their respective region/business unit
• Support, maintain and update the business unit’s cyber risk register and related mitigation actions.
• Drive all actions required to manage and mitigate cybersecurity risks in assigned business unit, including regulatory compliance requirements
• Develop and provide periodic cybersecurity metrics and reports
• Participate in local internal audits and drive remediation of cyber security related findings
• Perform cybersecurity assessment of 3rd party engagements
• Manage execution of external penetration tests, internal vulnerability assessments, internal cyber audits and cybersecurity assessments.
About You
The role requires knowledge of external threats and internal exposures, a thorough grounding in technology infrastructure and the ability to frame security issues in terms of core business missions. As such, following are the key experiences required to be successful in this role:
• Minimum 3 years of relevant professional experience.
• Significant demonstrated experience and knowledge of cyber security issues, techniques and implications.
• Programming experiences and data analysis.
• Computer Science, Computer Engineering degree or equivalent.
• Advanced English Proficiency.
• CISSP or equivalent Cybersecurity certification.