IT Security Solution, Senior Officer

JOB PURPOSE:

- The primary role of the IT Security Solution job is to ensure that approved IT security policies, rules, and/or configurations are implemented across MBAL IT security systems and its Infrastructure.

- The role of this job is to ensure that all security and/or monitoring software, computers, firewalls, servers, devices, appliances, and related IT infrastructure are up to date and configured based on existing MBAL corporate security rules, standard policies, and procedures.

KEY RESPONSIBILITIES:

- Ensures appropriate MBAL systems and/or devices are properly configured, updated, and working appropriately to detect potential threats and security incidents.

- Oversees and monitors the system security operations (cyber and internal), such as user account management, network vulnerability scanning, virus database update/scanning, and other security measures (detailed below) are performed in accordance with existing MBAL standard policies and procedures:

+ Detection of anomalies, cyber threats, and fraudulent use of computers and computer systems;

+ Security electronic communication (email and social media);

+ Protection of personal data and privacy;

+ Secure IT development with regard to MBAL business applications

+ Data masking, encryption, security testing, certification, digital signatures, and Public Key Infrastructure (PKI)

- Provides support, education, and training to all employees in terms of IT Security risk awareness within the organization.

- Performs audits, reviews, analyses, and reports on the submission of security log files as described in approved IT security policies.

- Participates in the review of investigations after breaches or incidents, including impact analysis and recommendations for avoiding similar vulnerabilities.

- Provides technical support and/or recommendations on IT security technology that would help align MBAL with the latest technology and industry standards.

1. Qualification: At least a Bachelor’s degree in Computer Science, Cyber Security, or a related technical field. A master degree is a big plus.

2. Technical Skills: AD Domain security policy, Network Access Control (NAC), Firewall, DDoS/WAF, PAM (Privilege Access Management, Data Classification/Data Loss Prevention (DLP), Secure Config Hardening, Vulnerability, Scanning/Management, Anti-malware solution. Cloud Security; Cloud Architect AWS/Azure/GCP and Incident Response: EDR, SIEM, SOC… are preferred.

3. Experience: At least 2 years solid IT experience with actual hands-on experience in IT Security operations and monitoring using top-of-the-line technology solutions: ISO 27001, NIST, CIS…

4 Language: Good command of English

5. Certification: Certification related to cybersecurity, network, e.g, CCNA/MCSA/CEH… is preferred