ASSISTANT MANAGER - INFORMATION SECURITY

Job description

• Security Monitoring : Continuous monitoring of an organization's IT infrastructure, systems, and networks for security threats and vulnerabilities, utilizing tools like IDS, IPS, and SIEM.
• Vulnerability Assessment : Regularly conduct vulnerability assessments to identify and address weaknesses in systems and applications, collaborating with IT teams for remediation.
• Antivirus Monitoring : Monitor antivirus solutions for effective operation and responding to malware and security threats on all Windows endpoints with up-to-date signature updates.
• Port Scanning : Systematically scanning a range of network ports to determine which ones are active and accepting connections.
• Security Compliance Audits: Coordinate and participate in internal and external security audits and assessments to evaluate the effectiveness of security controls and ensure compliance.
• User Access Reviews: Conduct User access reviews to ensure that access privileges are appropriate and regularly reviewed.
• Security Policies and Procedures: Assist in the development and enforcement of security policies, standards, and guidelines. Ensure compliance with industry best practices and regulatory requirements.
• SIEM tool management: Implement and manage security monitoring systems and technologies (e.g., SIEM) to detect and respond to security events in real-time.
• Security Framework Implementation: Contribute to the implementation of security frameworks such as NIST, CIS, or ISO 27001.
• Change Management : Reviewing System / Server changes and ensuring compliance with established change management policies and procedures.

• Identifying security loopholes is an ongoing process that involves various activities and measures to detect weaknesses and potential entry points for attackers.
• Security Tool Evaluation: Support the evaluation and testing of security tools and technologies.
• Security Awareness and Training: Promote security awareness within the organization.