Information Security (InfoSec) Specialist

6-14 years
58 Applied
Job Description

Job Title Information Security (InfoSec) Specialist
Minimum Qualifications: Bachelor's degree in computer engineering, Computer Science or equivalent
Relevant IT certifications will be an advantage
Minimum Experience: Minimum 6+ years experience in
Information Security Policies & Procedures, Vulnerability Management, Security Incident Management, Information Security Audit, IT Risk Management, IT Systems & Applications, Training & Awareness, Monitor Information Security queue, investigate resolve tickets within agreed service level. Participate in review and approve IT changes as required. Threat hunting across the environment to identify and manage threats and vulnerabilities. Perform any other duties assigned by the supervisor directly related or relevant to the job. Ensure the assigned responsibilities are delivered: to a high standard of quality and timeliness in full compliance with the SC Quality Policy and the Safety and Security rules and requirements in line with any standards and objectives designated in the Employee Performance Management system

Job Specific Skills: As per the above Minimum Experience section.
Key responsibilities
Data Security:
Proper care and administration of the Data Loss Prevention (DLP) environments and monitoring and responding to the alerts that generate from the tool.
Maintaining Information, Application register.

Information Security Policies & Procedures:
Participate in the development and maintenance of information security plans, policies and procedures to support and align with organizational mission and initiatives.
Ensure the alignment with National information's security frameworks (ex. NIA, FIFA Cyber Framework ...)

Vulnerability Management:
Partner with system owners to track identified vulnerabilities. Participate in the assessment, research and remediation of vulnerabilities.
Review and maintain information security vulnerability management framework & tools.

Security Incident Management:
Respond and report on security incidents and provide post-incident analysis, documenting, lessons learned and Recommendation.
Review and maintain information security incident management framework & tools.

Information Security Audit:
Coordinate internal and external audits and assessments to ensure the effectiveness of security controls for various systems and applications.

IT Risk Management:
Participate with GRC specialist in conducting periodic Information Security risk assessment, updating information asset profile, identifying vulnerabilities and proposing treatments.

IT Systems & Applications (In-House & Cloud):
Advise and support IT systems and applications design, implementation and operation according to information security standards and guidelines.

Training & Awareness:
Participate in developing and delivering information security training and perform general security awareness.

Other
Monitor Information Security queue, investigate resolve tickets within agreed service level.
Participate in review and approve IT changes as required.
Threat hunting across the environment to identify and manage threats and vulnerabilities.
Perform any other duties assigned by the supervisor directly related or relevant to the job
Ensure the assigned responsibilities are delivered:
to a high standard of quality and timeliness
in full compliance with the SC Quality Policy and the Safety and Security rules and requirements
in line with any standards and objectives designated in the Employee Performance Management system

www.vistasglobal.com

People Also Considered

Career Advice to Find Better