IT Security Specialist - Doha, دولة قطر - Hot & Cold International Consulting

Hot & Cold International Consulting
Hot & Cold International Consulting
شركة تم التحقق منها
Doha, دولة قطر

منذ أسبوع

Aisha Al-Thani

تم النشر بواسطة:

Aisha Al-Thani

مسوّقة للمواهب لبيبي
وصف

1-
IT Security Specialist
IT Security Specialist is responsible for security risk assessments, protection of IT assets, building of resilience to defend

against security attacks and responding to security incidents. He/She is technically proficient in IT network security and

cloud security and is also conversant with IT security frameworks/policies and procedures, e.g., ISO27001. IT Security

Specialist can also evaluate security systems including fire protection systems and theft protection and ensure that

potential safety hazards are addressed.

  • Act as custodian of the organization IT Department's Information Security policies and procedures and ensure these are
implemented successfully and review periodically.

  • Liaise with the organization IS manager and internal auditors on IT security governance.
  • Ensure applicable regulations, standards and audit observations are implemented with necessary controls.
  • Oversee/Manage IT Budget relating to Information security.
  • Define, manage, and monitor both cloud and onpremises security devices and software.
  • Monitor access logs and perform periodic data audits and backups.
  • Correlate network activity across networks to identify trends of unauthorized use.
  • Research emerging threats and vulnerabilities to aid in the identification of network incidents.
  • Monitor networks and systems for security breaches or intrusions.
  • Proactively investigate suspicious activities to prevent potential security incidents through identification, analysis,
investigation, and escalation.

  • Detect, report, and respond to security incidents. Review alerts and data from sensors and network devices and
Conduct network monitoring and intrusion detection analysis using Computer Network Defense (CND) tools, such

as Intrusion Detection/Prevention Systems (IDS/IPS), firewalls, Host-Based Security System (HBSS), etc.

  • Work directly with the organization servers and networks team; perform setup, enhancement, and maintenance tasks.
PoC and prepare report to Management.

Configure, implement, maintain all security platforms and any other related software, such as anti-virus, Anti-SPAM,

intrusion detection or intrusion prevention, firewalls and test all components prior incorporating to THE ORGANIZATION environment.

  • Implement network security best practices through regular monitoring of router, switch, firewall configurations etc.
  • Maintain network security devices to enable proactive defense of networks.
  • Work under strict change control processes to ensure only authorized changes are made to devices.
- prepare formal, technical incident reports if security breach occurs.

  • Supports the creation of business continuity/disaster recovery plans. Conduct disaster recovery tests, publish test
results, and make changes necessary to address deficiencies.

  • Make decisions to weigh relative costs and benefits of potential actions and identify the most appropriate one

Education and Certifications
Bachelor's degree in communications, marketing, psychology, or a related field (or

relevant experience in these areas); master's preferred.

  • Certified Information Systems Security Professional (CISSP) and/or Certified
Information Security Manager (CISM), Certified Ethical Hacking (CEH)

  • Vendor certifications in CISCO, Palo Alto, F5, Barracuda preferred.

Experience /Skills
Technical expertise in Intrusion Prevention System (IPS)/Intrusion Detection System

(IDS), SIEMs and other Computer Network Defense (CND) security tools.

  • Hands on experience IT security tools like Wireshark, Nessus Pro, Kali Linux
OS, Burpsuite, Nmap, Advanced port and IP scanning tools.

  • Over eight years of experience in information security, especially on a Computer
Incident Response Team (CIRT), Computer Emergency Response Team (CERT),

Computer Security Incident Response Center (CSIRC) or a Security Operations

Center (SOC).

  • Over three years of experience in another IT function, especially IT Audit.
  • Over three years of experience with regulatory compliance and information
security management frameworks (e.g., IS027000, COBIT, NIST 800, etc.)

  • Knowledge and experience in Risk management, compliance, security awareness
training and documentation.

  • Upgrade Networking Security Devices Software to stable Operating Systems as per
the OEM recommendation.

  • Experience with Microsoft Cloud Security solutions, Microsoft Defender EDR, Azure
Sentinel, Azure Security Center, Microsoft Cloud App Security, Microsoft 365

Security.

  • Experience with Azure Key Vault, HSM modules and BYOK encryption
Experience with Microsoft Active Directory security and Azure Active Directory.

Experience with Windows OS administration, maintenance and hardening.

intrusion prevention, and other network component policies.

  • Experience in managing SIEM environments, firewalls, content filters, proxy servers, HIPS,
packet capture devices.

  • Experience with Firewall and WAF configuration and administration.
المزيد من الوظائف من Hot & Cold International Consulting
انظر جميع وظائف Hot & Cold International Consulting