Assistant IT Security Manager

We are seeking an experienced and dynamic Assistant Manager for the Security Engineering team to lead our organization's efforts in safeguarding our information systems and ensuring the confidentiality, integrity, and availability of our digital assets. If you possess a strong background in cybersecurity, risk management, and a proven track record of developing and implementing effective security strategies, then you are the one that we are looking for!

.

The Job:

• Strategy and Planning:
• Develop and implement a comprehensive IT security strategy, and develop security policy aligned with business objectives.
• Provide strategic guidance and oversight for the development, implementation, and maintenance of security policies, procedures, and standards.
• Risk Management:
• Identify and assess potential security risks and vulnerabilities, and develop mitigation plans.
• Conduct regular risk assessments and ensure that appropriate measures are in place to minimize and manage risks effectively.
• Security Operations:
• Oversee day-to-day security operations, including monitoring of security alerts, incidents, and investigations.
• Coordinate incident response efforts and ensure timely resolution of security incidents.
• Compliance:
• Develop and implement security policy and incident response plan.
• Ensure compliance with relevant laws, regulations, and industry standards.
• Work closely with internal and external stakeholders to conduct security audits and assessments.
• Security Awareness and Training:
• Develop and implement security awareness programs to educate employees on security best practices.
• Conduct regular training sessions to enhance the organization's overall security posture.
• Vendor Management:
• Evaluate and manage relationships with third-party security vendors and service providers.
• Collaborate with procurement to ensure that security considerations are addressed in vendor contracts.
• Security Architecture:
• Provide guidance on the design and implementation of secure IT architectures.
• Collaborate with IT teams to integrate security measures into the development and deployment of systems and applications.
• Team Leadership:
• Grow and manage the security engineering team.
• Inspire, Lead, mentor, and develop a high-performing IT security team.
• Foster a culture of continuous learning and improvement within the IT security team.

The Person:

• Bachelor's Degree in CyberSecurity / Information Technology / Computer Science or related field.
• At least 5 years of working experience in IT security.
• In-depth knowledge of cybersecurity principles, technologies, and best practices.
• Vast experience with Cloud and virtualized technology in environments such as AWS.
• Proven track record of cloud security auditing.
• Proven track record of developing and implementing security policy.
• Experience with penetration testing tools such as Burp Suite, Nuclei and other open source tools.
• Deep understanding of authentication protocols and frameworks to include OAuth and AWS IAM.
• Have knowledge of the latest industry trends and best practices in information security.
• Experience in bug bounty programs, CTFs and/or having InfoSec certifications (OSCP, OSWE, Security+ or other technical certifications relating to security testing) will be an added advantage
• Excellent leadership and communication skills.
• Ability to collaborate effectively with cross-functional teams and external partners.
• Demonstrated ability to manage complex projects and initiatives.

• Annual Leaves- Additional annual leave will be credited to you on a yearly basis.
• Medical and Insurance Coverages - We have got you covered.
• Opportunities - Above training and guidance, you will have the opportunity to try, to build your confidence and become your best self, and to interact and build a strong relationship.
• Rocking Diversity - Play hard, work harder with people of diverse skill sets and experiences! Challange yourself to step out of your comfort zone, and you'll find yourself growing in way you'd never imagine.