Specialist Information Security

JOB OBJECTIVE:

This role requires a technical expert with broad experience architecting and implementing information security technology solutions in a large enterprise environment. They must be able to act as a technical leader to support talent development and the building of high-performance teams. An effective collaborator, the Cybersecurity Specialist will work closely with key stakeholders including the Sr. Network Engineer, Systems Architect, and other teams to implement effective business solutions. With deep and broad background in information security and related services, the successful candidate will also be current with emerging best practices and service trends, particularly all aspects of cloud computing.

• Security systems development, testing, analysis, and implementation
• System vulnerability assessment and management
• Response to security threats, attacks, and similar events
• Development of threat prevention strategies
• Coordinate & conduct black/white box security assessments with industry standard security tools
• Regular generation of reports for executives and administrators
• Comply with Health, Safety and Environment Policies (mandatory for all)
• Work independently on technical issues and recommend design solutions.
• Demonstrate a solid understanding of infrastructure, virtualization, cybersecurity standards, and operating procedures.
• Collaborate with other members of the cybersecurity team to develop new protocols, layers of protection, and other both proactive and defensive systems that stay one step ahead of cyber criminals.
• Maintain security guidelines, procedures, standards, and controls documentation
• Maintain a working knowledge of current cybercrime tactics.
• Lead the analysis of the current technology environment to detect critical deficiencies and recommend solutions for improvement Conduct incident response analyses; develop.
• Participate in and lead design sessions with Finning personnel as well as external parties.
• Consult on application or infrastructure development projects to harmonize systems or infrastructure.
• Assist with designing the governance activities associated with ensuring compliance with Information Security Policies.
• Monitor and ensuring compliance to standards, policies, and procedures.
• Define high-level migration plans to address the gaps between the current and future state, typically in sync with the budgeting or other planning processes.
  
  

JOB OBJECTIVE:

This role requires a technical expert with broad experience architecting and implementing information security technology solutions in a large enterprise environment. They must be able to act as a technical leader to support talent development and the building of high-performance teams. An effective collaborator, the Cybersecurity Specialist will work closely with key stakeholders including the Sr. Network Engineer, Systems Architect, and other teams to implement effective business solutions. With deep and broad background in information security and related services, the successful candidate will also be current with emerging best practices and service trends, particularly all aspects of cloud computing.

• Security systems development, testing, analysis, and implementation
• System vulnerability assessment and management
• Response to security threats, attacks, and similar events
• Development of threat prevention strategies
• Coordinate & conduct black/white box security assessments with industry standard security tools
• Regular generation of reports for executives and administrators
• Comply with Health, Safety and Environment Policies (mandatory for all)
• Risk Management (mandatory; line manager discretion)
• Work independently on technical issues and recommend design solutions.
• Demonstrate a solid understanding of infrastructure, virtualization, cybersecurity standards, and operating procedures.
• Collaborate with other members of the cybersecurity team to develop new protocols, layers of protection, and other both proactive and defensive systems that stay one step ahead of cyber criminals.
• Maintain security guidelines, procedures, standards, and controls documentation
• Maintain a working knowledge of current cybercrime tactics.
• Lead the analysis of the current technology environment to detect critical deficiencies and recommend solutions for improvement Conduct incident response analyses; develop.
• Participate in and lead design sessions with Finning personnel as well as external parties.
• Consult on application or infrastructure development projects to harmonize systems or infrastructure.
• Assist with designing the governance activities associated with ensuring compliance with Information Security Policies.
• Monitor and ensuring compliance to standards, policies, and procedures.
• Define high-level migration plans to address the gaps between the current and future state, typically in sync with the budgeting or other planning processes.
  
  

• Develop, support, and advance strategies, policies, programs, and projects designed to continually improve and enhance cyber and information security posture and resiliency
• Oversee compliance with applicable laws, rules, and regulations related to cyber and information security
• Work with the compliance team to establish policies/standards/guidelines to ensure systems record user activities and access to sensitive data in support of insider risk management
• Develop and implement software security compliance program that takes a risk-based approach to ensure appropriate compliance to policies/standards/guidelines
• Contribute to awareness and outreach efforts both internally and externally
• Attend all regular, special, and emergency meetings regarding cyber and information security
• Regularly review the operation of security controls and recommend changes designed to improve effectiveness and/or counter emerging risks
• Make appropriate recommendations for security enhancements to the line manager or any external vendor providing services including tools, technologies, services, policies, procedures, and other areas as needed
• Lead efforts to evaluate and select vendors for security assessments, penetration testing, and other similar security services
• Direct and oversee the evaluation of security tools and make acquisition recommendations to the IT Security Manager
• Manage budgets, maintain financial forecasts, develop, and present business cases
• Establish objectives and milestones and manage activities to deliver high-quality results within budget and schedule

• Bachelor s degree holder in Computer Science/Engineering or equivalent Knowledge
• Broad knowledge across all areas of the Technology Architecture domain including Cloud Computing (IaaS, PaaS, AWS, Azure etc.) Data Center, Data Storage Technologies, Virtualization, server platforms (Windows and Linux), Desktop, mobility solutions, systems monitoring/management, data protection, high availability/clustering, network (WAN/LAN/WLAN etc.), Security (Firewall, IDS/IPS, VPN etc.)
• Strong proficiency in Incident Management and Response.
• Experience in security device management and SIEM.
• In-depth knowledge of security concepts such as cyber-attacks and techniques, threat vectors, risk management, incident management etc.
• Experience in threat management and threat intelligence.
• Good understanding of Infrastructure Security and its impact on Security Operations, Vulnerabilities, Reporting, Analytics and Monitoring.
• Ability to develop a comprehensive understanding of Finning s business, market and industry and relate that knowledge to identified operations and IT-related risks
• Familiar with the basic principles of organizational change management, and understanding of how to apply these principles

• Minimum 5 years experience in Information Technology (IT) & Operational Technology (OT) Cyber security
• Hands-on experience running mission-critical cybersecurity operations
• Proven experience building a service-oriented organization and driving or promoting a service delivery model
• Exhibit excellent analytical skills and the ability to manage multiple projects under strict timelines as well as the ability to work well in a demanding, dynamic environment and meet overall objectives
• Project management skills: financial/budget management, scheduling, and resource management
• Experience with contract and vendor negotiations, and expertise in negotiating complex contracts and managing vendors, including design, and tracking of Service Level Agreements (SLAs)

Disclaimer: Naukrigulf.com is only a platform to bring jobseekers & employers together. Applicants are advised to research the bonafides of the prospective employer independently. We do NOT endorse any requests for money payments and strictly advice against sharing personal or bank related information. We also recommend you visit Security Advice for more information. If you suspect any fraud or malpractice, email us at abuse@naukrigulf.com