IT Security Manager

Key Responsibilities

• Collaborate with SIRO/SIRM, IT Security Officers (ITSO), and the SOC to monitor, detect, and respond to security threats across on-premises and cloud environments.

• Lead security incident response activities, including investigation, containment, remediation, and post‑incident reviews.

• Stay updated on emerging threats, vulnerabilities, and cloud‑specific threat intelligence.

• Distribute security advisories, threat intelligence reports, directives, and patch recommendations to relevant agency stakeholders in a timely manner.

• Participate in tabletop exercises, risk assessments, audits, and third‑party evaluations to strengthen incident readiness and response maturity.

• Monitor SIEM platforms (e.g., Splunk, Cortex, Exabeam), performing event triage, correlation, and in‑depth analysis.

• Conduct vulnerability assessments using Tenable Nessus across applications (web, mobile), network devices, and operating systems.

• Lead periodic security reviews to ensure compliance with security policies, standards, controls, and best practices.

• Recommend and implement security improvements based on audit findings, TTX outcomes, and gap assessments.

• Oversee adherence to secure configuration baselines (e.g., CIS Benchmarks) for networks, systems, and endpoints.

• Analyse vulnerability scans, track remediation progress, and report closure within mandated timelines.

• Manage, configure, and optimize security tools and platforms to ensure seamless integration within network and IT ecosystems.

• Oversee security controls for network, system, endpoint, and runtime environments across on‑premises and cloud infrastructure.

• Conduct periodic account and access reviews for both on-prem and cloud‑based applications and systems.

• Develop and update security policies, technical baselines, and Standard Operating Procedures (SOPs).

• Maintain accurate documentation of incidents, vulnerability assessments, security controls, and compliance artifacts.

• Produce regular reports on security metrics, incident patterns, compliance status, and risk mitigation initiatives.

• Ensure timely escalation and management reporting of cybersecurity incidents.

• Provide mentorship and guidance to IT Security Officers (ITSOs).

• Collaborate with Infrastructure, Applications, and Project teams, as well as external vendors, to implement and sustain security controls.

• Serve as the primary point of contact for stakeholders—including SIRO/SIRM, IT teams, application teams, and cloud service providers—to align security practices with organizational cybersecurity strategies and compliance requirements.

• Bachelor’s degree in Information Security, Computer Science, or a related field.

• At least 5 years of experience in IT security leadership, with a minimum of 1 year in cloud security preferred.

• Hands‑on experience with security tools such as SIEM, WAF, AV, EDR, PAM, and DAM.

• Strong understanding of vulnerability management, threat analysis, and incident response processes.

• Good knowledge of secure network architecture, endpoint protection, and system hardening techniques.

• Familiarity with cybersecurity frameworks, compliance standards, and risk management methodologies.

• Experience with IaC security (e.g., Terraform, CloudFormation) and CI/CD pipeline security.

• Preferred: CISSP, CISM.

• Advantageous: CCSP, AWS Security Specialty, Azure Security Engineer Associate, or equivalent cloud security certifications.

• Strong analytical and problem‑solving abilities with meticulous attention to detail.

• Excellent written and verbal communication skills with the ability to articulate security risks and recommendations clearly.

• Ability to work independently and collaboratively in a dynamic, fast‑paced environment.

• Proactive, security‑first mindset with a commitment to continuous improvement.