Role Purpose The Cyber Defence team's mission is to deliver a highly effective end-to-end 24x7 Cyber Defence service.
They are responsible for proactively identifying threats and vulnerabilities; detecting and mitigating cyber events; and managing cyber security incident responses to minimise service impact and provide a secure digital future for our customers.
The expertise in this team should drive Cyber security improvement.
This requires close collaboration with the Company, operational teams and external partners. Brief Description Reporting to Manager Cyber Security Prevent Defense, as the Specialist – Cyber Security Defense, you will be responsible for:
Coordinate operations of the Cyber Security Defend stakeholders and team.Implement, Upgrade, Maintain and Refine End-to-End Security Monitoring.Timely Manage Proactive Reactive Security Incident Management Processes, Communication and Response Plans.Facilitate implementation, management and optimization of Cyber Defense policies, standards and procedures.Ensure adequate CAPEX\OPEX budget, resource and management focus is on cyber security risks.Implement actions to close risks, Audit Reviews (Internal and External) on Security Monitoring and Incident Management.Improvement of the Cyber security posture of the company through several initiatives, including but not limited to Cyber Security Baselines.Act as a Local Cybersecurity ambassador in the Market they are based in and support the Group Cybersecurity Mission. Key Roles: Impact on the businessCoordinate optimization of the Operational Monitoring Defense cyber security baselines (CSB) controls across all relevant business areas and processes.Optimize and maintain respective Monitoring Cyber Security controls and requirements across environments.Ensure all the Company and third-party systems' products, services and projects are compliant to the company's minimum security Monitoring requirements and Cyber defense Cyber Security Baselines (CSBs).Responsible for the set-up, execution and maintenance of the security incident management and coordination process in conjunction with incident management capabilities.Support all internal and external audits around Technology systems and processes, ensure these systems are free from known Technology audit findings and ensure all audit findings in these systems are closed within agreed timelines.Qualifications Degree in Electrical Eng/Computer Science/information Technology or equivalent Technology-related degreeAt least one professional Information Security Qualification: CISSP/CISM/CISAAdvanced competencies in Network Security: CCNP or CCIE (Security)Advanced competencies in Microsoft, Linux or Unix Operating Systems administrationAdvance competencies experience in Information Security Technologies Skills and Experience Minimum of 3 years focused Security experience in Incident Management, Intrusion Analysis, Network troubleshooting or Reverse Engineering.Minimum of 2 years Security tooling management and deployment experience with Forensic tools, Security Logging and EDR Tooling.Experience in design, delivery and support of Information Security solutions to customers will be and added advantage.Good communication skills and team player.Experience in the use of security tools.Project management skills, and proven task execution (getting things done).Superior Report writing skills.Analytical Thinking.Customers, supplier and third partiesSupport compliance with Legal, Regulatory and key stakeholders' requirements across the Technology domains.Responsible for monitoring of compliance of the Cyber security Monitoring and Incident services contract, to ensure it is within agreed SLA.Coordination of analytical processes and incident response measures.Ensure proper monitoring implementation and change management processes compliance for all planned and emergency changes in Technology systems. Leadership, Planning and Human Resource ManagementManage assigned the Cyber security CAPEX\OPEX budgets and planning, in alignment with the company and Group strategy.Manage the Cyber security subordinate resources (FTEs and contractors) for their tasks/job descriptions effective implementations.Skills development within Cyber security department.Performance Management of the Cyber security team.Provide input to Security Policies and requirements on Technology security methods and technologies.Support Implementation and enforcement of the cyber code across all users.Provide regular and accurate management reporting on Cyber security service performance.Innovation and changeMaintain the Incident management Monitoring (SPDA) processes of the GDPR and business requirements.Continually review and enforce security policies and controls, to support business requirements and changing security landscapes.Set-up of analytics framework and tools.Drive continuous improvement through simplification of key cyber security processes.CommunicationDrive internal and third-party service review meetings covering performance, service improvements, quality and processes.Make recommendations for Cyber security service Improvement Plans and ensure actions are followed through to completion in a timely manner.Support information security awareness and training to all users and third-party vendors.Driving incident planned and emergency communication processes to both internal and external audience.