I. JOB BRIEF:
This position has the role of research, developing, managing, supervising, and operating IT information security; designing, proposing, and implementing the security solutions to ensure IT information security.
II. DETAILED JOB DESCRIPTION:
1. Responsible for delivering security services to the organization with direct responsibility for the day-to-day activities of the Security Team.
2. Manage, monitor duties, perform actions to ensure compliance, and maintain high standards.
3. Implement, manage and monitor information security aspects, security incidents, threats, and abnormal events.
4. Analyze, and correlate to detect the threats, intrusion, and data leakage, as well as immediately remediate the security incidents.
5. Analyze the daily logs from firewalls, network devices, servers, antivirus systems, endpoints & other devices.
6. Regularly conduct the security vulnerability scanning for the applications, servers, and network devices.
7. Propose and follow up with the security mitigation plan to ensure the vulnerabilities are fixed on time.
8. Own and implement in IT Security projects and provide the security consultant to ensure the information security for IT systems, networks, and applications.
9. Pentest, evaluate the security of applications, and systems throughout the development lifecycle. Periodically pentest and reporting for all the IT systems.
10. Conduct training sessions that help to improve security awareness for users, and to comply with information security policies, regulations, and procedures. For IT teams to enhance their knowledge of security.
11. Constant updates on the latest threats, vulnerabilities, security trends, challenges, and solutions.
12. Study, research, conduct the PoC, and propose the security solutions to improve the information security.
13. Collaborate sections at the IT Department to appraise, build, deploy and supervise information security systems operations.
14. Directly reporting to IT Infrastructure and Support Manager and indirectly to IT Director.