IT Security

Systems Management:

Security Policy Development: Develop, implement, and enforce security policies, procedures, and protocols to protect sensitive data and ensure regulatory compliance.
Threat Monitoring and Analysis: Continuously monitor networks and systems for security breaches or vulnerabilities and investigate and respond to potential threats.
Incident Response: Lead incident response efforts, including containment, eradication, and recovery from security breaches, and document lessons learned.
Identity and Access Management: Manage and monitor access controls, permissions, and multi- factor authentication systems to ensure appropriate user access.
Risk Assessment and Vulnerability Management: Proficient in conducting regular risk assessments, vulnerability scans, and penetration tests, and collaborating with IT teams to implement remediation strategies for enhanced cybersecurity posture
Audit: Review all changes of systems, make sure all changes are recorded (including quality and process verification are meeting standards)
Using data loss prevention technologies/strategies to protect sensitive data and develop and implement extensive security plans, policies and procedures to protect personnel, assets and information.

Troubleshooting and Support

Employee Training and Awareness: Conduct training and awareness programs to educate staff on security best practices, phishing threats, and safe online behavior.
Incident Response & Documentation: Leading incident response efforts, including root cause analysis and post- incident reporting, to ensure lessons learned are integrated into future security planning.
Provide technical support for end- users and troubleshoot issues related to security issues.
Collaboration: Work closely with IT and development teams to design secure infrastructure and recommend security improvements.

Experience with vulnerability scanning and penetration testing tools.
License & Certificate: Relevant certifications (e.g., CISSP, CEH, CompTIA Security+) is a plus.
Ability to conduct root cause analysis for security incidents.
Education & Major: Information Technology, Computer Science, or a related field. Industry certifications preferred
Familiarity with compliance standards (e.g., GDPR, HIPAA, PCI- DSS).
English level: Good
Strong knowledge of SIEM, firewalls, VPNs, IDS/IPS, data loss prevention (DLP) technologies multi- factor authentication (MFA), and vulnerability scanning tools (e.g., Nessus, Qualys).
Proficiency with security protocols, encryption, and cryptography.

Laptop, Chế độ bảo hiểm, Xe đưa đón, Chăm sóc sức khỏe, Đào tạo, Tăng lương, Nghỉ phép năm

Cập nhật gần nhất lúc: 2024-11-13 07:45:02