Your key responsibilities
- Conduct threat and risk analysis and analyze the business impact of new and existing systems and technologies to eliminate risk, performance, and capacity issues. They implement vulnerability assessments and configure audits of operating systems, web servers, and databases and detect patterns, insecure features, and malicious activities in the infrastructure.
- Perform research, testing, evaluation, and deployment of security technology and procedures.
- Run diagnostics on any changes to data to verify any undetected breaches.
- Develop custom systems for specialized security features and procedures for software systems, networks, data centers, and hardware.
- Develop and implement information security standards, guidelines, and procedures.
- Develop firewalls to secure the network infrastructure.
- Keep current with new intrusion methods and develop protection plans. They have an in-depth understanding of vulnerabilities, management systems, and common security applications.
- Conduct counteractive protocols and report incidents. They offer customized risk ratings for vulnerabilities based on company policies and maintain IT security controls documentation.
- Review anti-virus systems and consoles and conduct software upgrades/patches.
- Have an in-depth understanding of OWASP testing methodology, Dynamic and Static Application Security Testing, re-engineering, automation, ASP.NET/JAVA , IDS/IPS systems, Burp Suite, Nmap, Nessus, Qualys, and Metasploit, etc.
- Manage relationships and coordinate with clients and service providers while providing customized security assessments, implementing security policies, designing security training materials, organizing training sessions, providing technical support, and communicating security policies and procedures.
- Protect client data, particularly sensitive data, from both internal and external threats by designing broad defenses against would-be intruders
- Drive day-to-day monitoring for unusual activities, implement defensive protocols, and report incidents
- Collaborate with other members of the cybersecurity team to develop new protocols, layers of protection, and other both proactive and defensive systems that stay one step ahead of cyber criminals
- Maintain security guidelines, procedures, standards and controls documentation
Maintain a working knowledge of current cybercrime tactics
Collect data on current security measures for risk analysis and write regular systems-status reports
- Constantly monitor for attack and run appropriate defensive protocols if breaches occur
- Conduct vulnerability testing to identify weaknesses and collaborate with cybersecurity team to update defensive protocols as necessary
- Configure anti-virus systems, firewalls, data centers and software updates with a security-first mindset
- Grant credentials to authorized users, monitor access-related activities and check for unregistered information changes
- Help lead employee training against phishing and other forms of cyberattack
- Coordinate and interface with the stakeholders including taking calls, responding to emails ensure timely updates and progress report on the project
- Prepare internal and external corporate documents for team members and industry partners
- Ensure Monitoring Compliance with applicable privacy law
- Maintain an organized filing system of paper and electronic documents
- Uphold a strict level of confidentiality and develop and sustain a level of professionalism among staff and clientele
- Conduct research and prepare client presentations, information memorandums and thought leadership documents
- Contribute to advisory engagements in the capacity of a team member - deliver quality output within assigned timelines.
Skills and Qualifications
- Degree/Advanced qualification in information systems, information technology or related field
- Certifications from recognised global bodies - (CEH/CISSP/CCNA etc)
- 5+ years experience in cybersecurity at a mid- to large-size business providing consulting services to clients
- Strong knowledge of IT, including hardware software and networks
- A meticulous eye for detail and ability to multitask in a fast-paced environment
Preferred Qualifications
- Excellent verbal and written communication skills
- Strong critical thinking, problem-solving, logic, and forensics skills
- Ability to work successfully in both individual and team settings
- Ability to think like a hacker in order to stay one step ahead
General skillsets:
- Excellence- Demonstrates a passion for delivering quality and in the assigned task
- Planning and organizing- Sets priorities, defines activities, fulfils given responsibilities and planswork so that results are achieved on time and within budget
- People development- Seeks self-development and provides support that enables others to develop within the firm
- Teamwork- Works co-operatively with others, positively influences them and ensures team participation to support the firm s goals
- Communicating- Listens to, understands and communicates confidently with others in a clear, concise, polite and purposeful way
