PEVANS EA LTD is seeking an IT security specialists to fill the role of Information Security Manager.
Overview
The Information Security Manager is responsible for the IT risk management program. He/she is primarily responsible for the design, implementation, management, and operations of security controls and systems to protect the confidentiality, integrity, and availability of the organization’s information assets. The role will also create and implement new procedures, standards and best practices as required by business activities.
He/she leads the risk assessments and develops the security policies, procedures, and controls. Technically, he/she develops the technical security controls and continuous vulnerability assessments. The position works collaboratively and effectively with other IT groups, as well as user groups to meet company objectives.
Job Responsibilities
Perform compliance monitoring of all IT security assets and solutions
Establish system safeguards by creating disaster preparedness protocols and conducting preparedness tests.
Design and manage the company’s security program and coordinate with other departments to address issues and improvements
Provide supervisory and leadership support to IT security staff
Design and manage all security processes and controls
Proactively analyze, report, resolve and remediation of any Information Security incident or violation Conduct Information Technology Risk Assessment
Manage security guidelines documentation, testing and project schedules for security processes and controls
Educate the front-line helpdesk staff and all network users about security best practices
Identify, recommend changes and new designs, and implement new security controls
Ensure compliance with policies and procedures approved by the CIO and associated committees to develop and refine the same
Manage systems and computer security by monitoring related applications/ systems and tools
Manage the IT security environment with a core infrastructure of firewalls, load balances, routers and switches
Assist in the architect, design and testing of new security related solutions to take advantage of emerging technology or changing requirements
Manage the IT security budget.
Provide consultation or guidance of Information Security to other Business Unit
Qualifications
A Bachelor’s Degree in Information Technology with a specialization in Information/Systems Security is a must – A Master’s Degree is an added advantage
A minimum of 5 years’ experience in a similar role
A professional IT security certification and IT standards certification is an added advantage (CISSP, CCNA Security, ISO 27000, ITIL etc.)
General understanding and knowledge of regulatory requirements, security concepts, governance and privacy
Experience with vulnerability mitigation strategies
Experience working with network forensic tools
Experience with security tools – NAC, Antivirus, File Integrity Management, Intrusion Prevention, Network and Application Firewalls, Web Proxy, Logging & Monitoring and DLP
Experience with Malware detection tools, techniques, investigation and remediation
Experience with security event response from key security products and services (network traffic analysis, PC forensics, kill chain, windows event analysis, etc.)
Able to partner with management and technical staff to resolve complex security matters and critical policy creations
Detail-oriented, resourceful and able to manage shifting priorities
Excellent written and verbal communication skills required
Ability to positively and effectively interact with internal and external customers
Ability to work well with others in a collaborative team environment
