Vacancy expired!
- Reviewing current system security measures and recommending and implementing enhancements
- Conducting regular system tests and ensuring continuous monitoring of network security
- Developing project timelines for ongoing system upgrades
- Ensuring all personnel have access to the IT system limited by need and role
- Establishing disaster recovery procedures and conducting breach of security drills
- Promptly responding to all security incidents and providing thorough post-event analysis
- Design computer security architecture and develop detailed cyber security designs (network, applications, software development, operating system, virtualization, cloud, automation, etc.) with input from various stakeholders (Information Security, IT, etc.) while working in a hybrid cloud/traditional data center environment.
- Prepare and document designs, architectures, configuration standards, standard operating procedures and protocols.
- Assess the security posture, develop risk profiles, specify security requirements, and identify mitigation measures to safeguard public facing Web applications
- Extensive experience in information security and/or IT risk management with a focus on security, performance and reliability
- Solid understanding of security protocols, cryptography, authentication, authorization and security
- Good working knowledge of current IT risks and experience implementing security solutions
- Experience implementing multi-factor authentication, single sign-on, identity management or related technologies
- Ability to interact with a broad cross-section of personnel to explain and enforce security measures
- Working knowledge of information security concepts and technologies such as: least privilege, networking, network segmentation, firewalls, IPS\IDS, network analyzers, encryption technologies, proxies, etc.
- Proven work experience as a system engineer or system security engineer
- Familiarity with web related technologies (Web applications, Web Services, Service Oriented Architectures) and of network/web related protocols
- Cloud security (AWS - Azure) architecture, environment, and WAF experience
- Experience with container management and containerization technology.
- Experience on Authentication, Single Sign-On Infrastructure (AD, Azure AD, VDS, PingFederate, others);
- Extensive experience on authentication and authorization strategies using SAML/OpenID/OAuth;
- Extensive experience in usage related Identity & Access Management & defining standards around data at & data in transit - encryption, authorization, authentication, and security mechanisms,
- especially the foundational elements of the Public Key Infrastructure.
- Experience in building and maintaining security controls
- Detailed technical knowledge of application, network, database and operating system security
- Hands on experience in security systems, controls and concepts
- Good experience on IT Security compliance and regulatory requirements
- Experience with network security and networking technologies
- Working knowledge of sub netting, DNS, encryption technologies and standards, VPNs, VLANs, VoIP and other network routing methods
- Network and web related protocols (TCP/IP, UDP, IPSEC, HTTP, HTTPS, routing protocols, etc.)
- Advanced Persistent Threats (APT), phishing and social engineering, network access controllers
- (NAC), gateway anti-malware and enhanced authentication
- Thorough understanding of the latest security principles, techniques, and protocols
Vacancy expired!