IT Security Governance Officer - Doha, دولة قطر - Hot & Cold International Consulting
وصف
1-
IT Security Governance Officer
IT Security Governance Officer is responsible for security risk assessments, protection of IT assets, building of resilience
to defend against security attacks and responding to security incidents. He/She is technically proficient in IT network
security and cloud security and is also conversant with IT security frameworks/policies and procedures, e.g. ISO27001.
IT Security Governance Officer can also evaluate security systems including fire protection systems and theft protection
and ensure that potential safety hazards are addressed
Act as custodian of the organization IT Department's Information Security policies and procedures and ensure these are
implemented successfully and review periodically.
- Liaise with the organization IS manager and internal auditors on IT security governance.
- Ensure applicable regulations, standards and audit observations are implemented with necessary controls.
- Oversee/Manage IT Budget relating to Information security.
- Define, manage, and monitor both cloud and onpremises security devices and software.
- Monitor access logs and perform periodic data audits and backups.
- Correlate network activity across networks to identify trends of unauthorized use.
- Research emerging threats and vulnerabilities to aid in the identification of network incidents.
- Monitor networks and systems for security breaches or intrusions.
- Proactively investigate suspicious activities to prevent potential security incidents through identification, analysis,
- Detect, report, and respond to security incidents. Review alerts and data from sensors and network devices and
as Intrusion Detection/Prevention Systems (IDS/IPS), firewalls, Host-Based Security System (HBSS), etc.
- Work directly with the organization servers and networks team; perform setup, enhancement, and maintenance tasks.
Configure, implement, maintain all security platforms and any other related software, such as anti-virus, Anti-SPAM,
intrusion detection or intrusion prevention, firewalls and test all components prior incorporating to the organization environment.
- Implement network security best practices through regular monitoring of router, switch, firewall configurations etc.
- Maintain network security devices to enable proactive defense of networks.
- Work under strict change control processes to ensure only authorized changes are made to devices.
- Supports the creation of business continuity/disaster recovery plans. Conduct disaster recovery tests, publish test
- Make decisions to weigh relative costs and benefits of potential actions and identify the most appropriate one.
Education and Certifications
Bachelor's degree in communications, marketing, psychology, or a related field (or relevant
experience in these areas); master's preferred.
- Certified Information Systems Security Professional (CISSP) and/or Certified Information
- Vendor certifications in CISCO, Palo Alto, F5, Barracuda preferred.
Experience and Skills
Technical expertise in Intrusion Prevention System (IPS)/Intrusion Detection System (IDS),
SIEMs and other Computer Network Defense (CND) security tools.
- Hands on experience IT security tools like Wireshark, Nessus Pro, Kali Linux OS,
- Over eight years of experience in information security, especially on a Computer Incident
Security Incident Response Center (CSIRC) or a Security Operations Center (SOC).
- Over three years of experience in another IT function, especially IT Audit.
- Over three years of experience with regulatory compliance and information security
- Knowledge and experience in Risk management, compliance, security awareness training
- Upgrade Networking Security Devices Software to stable Operating Systems as per the
- Experience with Microsoft Cloud Security solutions, Microsoft Defender EDR, Azure
- Experience with Azure Key Vault, HSM modules and BYOK encryption
- Experience with Microsoft Active Directory security and Azure Active Directory.
intrusion prevention, and other network component policies.
- Experience in managing SIEM environments, firewalls, content filters, proxy servers, HIPS,
- Experience with Firewall and WAF configura
المزيد من الوظائف من Hot & Cold International Consulting
-
Data Entry Operator
Doha, دولة قطر - منذ أسبوع
-
IT Project Manager
Doha, دولة قطر - منذ أسبوع
-
IT Security Specialist
Doha, دولة قطر - منذ أسبوع
-
Techno Functional CRM Consultant
Doha, دولة قطر - منذ أسبوع
-
Female Driver
Doha, دولة قطر - منذ 5 أيام
-
Application Solutions Architect
Doha, دولة قطر - منذ أسبوع