Senior Manager-Cyber Security
GulfBankers
(, Qatar)
منذ 5 يوم
  • Contribute in development, documentation and maintenance of cyber security framework, policies, procedures, and standards.
  • Participate in the creation and maintenance of the enterprise's security architecture design.
  • Maintain up-to-date knowledge of the IT security industry including awareness of new or revised security solutions, improved security processes and the development of new attacks and threat vectors.
  • Participate in the selection of security solutions, or enhancements to existing security solutions, to improve overall enterprise security.
  • Participate in the deployment, integration and initial configuration of all new security solutions and of any enhancements to existing security solutions in accordance with standard best operating procedures
  • Participate in security monitoring, detecting and analysis of events related to Information Security, ensuring appropriate cyber defense.
  • Conducts technology and system assessments, provides technical consultation and ensures system security functionality
  • Responds to all system security weak points and partners with other teams and third party vendors to resolve security issues.
  • Investigate opportunities to update security system capabilities to sustain and enhance network and system security integrity.
  • Partner closely with IT Sec Ops, IT Audit and Risk Functions to understand compliance and relevant security policies, standards and governance within organization, including risk exposure, appetite, incidents and control effectiveness.
  • Perform security maturity assessment against frameworks such as ISO27001, ISO27002, PCI DSS, NIST 800 Series, COBIT, etc.
  • Perform Network / Server / Endpoint forensic Investigation.
  • Perform analysis of threat indicators and intelligent inside on daily basis
  • Prepare Incident Report for critical incidents and recommend effective corrective actions in order to prevent the recurrence.
  • Oversee enforcement of policies, procedures and associated plans for system security administration and user system access based on industry-
  • standard best practices.

  • Involved with implementation of disaster recovery plan for operating systems, databases, networks, servers, and software applications
  • Develop and administer SOC processes and review the application to ensure that SOC’s controls, policies, and procedures are operating effectively including its related an effective use cases.
  • Provide management oversight for the identification, triage and response of events or incidents of apparent security breaches.
  • Experienced in developing identity management strategy, solution architecture and implementation roadmaps that include identity and privileged access management, BRAC, provisioning, certification, entitlement management and policy management.
  • Provide technical design and architecture leadership, including documenting and diagramming the logical, physical, and process view within the technology domain.
  • Provide support and participate in proposals, RFPs, RFIs, RFQs and related by putting together solutions, diagrams, write-up, responses, etc.
  • Setting up an appropriate security governance program for IT.
  • To design, and implement, reporting mechanism on security systems and end user activity audits.
  • Identify opportunities to improve and use new ideas and networking technology to meet or exceed business objectives.
  • Skills and Qualifications :

  • Bachelor of Science in Information Technology.
  • Prefered Certification : CISSP, CCNP, CCSP, CISM, certain product certifications.
  • 5-10 years experience in the information security arena.
  • 4-5 years experience in the cyber security framework implmentation.
  • Well versed with administration and management of routers, firewalls, IPS, WAF, proxies, web / smtp content filters, antivirus especially in technologies related to Microsoft, Cisco, McAfee, Symantec, F5
  • Hand-on experience designing and / or delivering complex security solutions, such as Identity & Access Management, Data Protection, and DLP, SIEM, and IDS / IPS.
  • Proficeint knowledge of various frameworks / regulations such as PCI-DSS, ISO27001,NIST Cybersecurity Framework, SOC, ITIL, or similar.
  • Attack and Penetration experience in testing of internet infrastructure and Web-based Application utilizing manual and automated tools.
  • Exposure and experience on configuration reviews and log analysis on network / security devices.
  • Experience and demonstrated expertise on Risk management to manage periodic Bank’s information risk assessments that identify current and future security vulnerabilities, determine what level of risk is acceptable to management, and identify the best ways to reduce information security risks to this acceptable level and notify management of residual risks.
  • Ability to manage and prioritize multiple tasks and projects and assist / advise team members in stablishing appropriate priorities.
  • قَدِّم طلبك ترشيحك
    قَدِّم طلبك ترشيحك
    بريدي الالكتروني
    بالنقر فوق "متابعة"، عطي نيوفو الموافقة على معالجة بياناتي وإرسال تنبيهات البريد الإلكتروني لي، وفقًا لسياسة الخصوصية الخاصة بنيوفو. يمكنني إلغاء اشتراكي أو سحب موافقتي في أي وقت.
    واصل
    استمارة الطلب