استخدام کارشناس امنیت اطلاعات و شبکه
شرح موقعیت شغلی
Holding an IT-related degree and a technical background is essential for a Security Engineer role. Individual organisations may have additional requirements for a Security Engineer, including security certifications such as CISSP, GISP, and CISM.
Expertise across a variety of security products including firewalls, URL filtering, information security and virus protection
The commercial acumen to provide cost-effective security solutions
An enthusiasm for staying up to date with the very latest updates about security threats and solutions
Outstanding communication skills that go beyond “tech talk” – the ability to translate complex IT matters to those without an IT background
Strong time management and organisational skills
Previous exposure to Linux and/or Windows Operating Systems, coding languages, and/or Networks
Understanding complex technical issues and managing them within a fast-paced business environment
Maintaining all the software and hardware in relation to security
Documenting security certification
Identifying current and emerging technology issues including security trends, vulnerabilities and threats
Sourcing and implementing new security solutions to better protect the organisation
Conducting proactive research to analyse security weaknesses and recommend appropriate strategies
Liaising with vendors to implement security solutions
Project, configure, implement, and maintain all security platforms and any other related software, such as anti-virus, routers, Anti-SPAM, switches, intrusion detection or intrusion prevention, firewalls, cryptography systems, SIEM, and MDM
Plan and appraise ongoing assessment of antivirus, application control, firewall, SIEM, VPN, SSL, intrusion detection or intrusion prevention and other network component policies
Guarantee network security best practices are executed through auditing: router, change control, switch, firewall configurations, and monitoring
Responsible for periodic vulnerability testing, and lead remediation projects
Articulate systems and methodologies as well as reply to security-related events and support in remediation efforts
Coordinate and oversee log analysis for company managed services offerings to ensure customer policy and security requirements are met
Maintain network security devices to enable pro-active defense of networks within a managed service SOC environment, providing protective monitoring to multiple commercial customers
Work under the direction of the Team Leader to maintain security devices and show practical experience in managing SIEM environments, firewalls, content filters, NIDS, proxy servers, HIPS, and packet capture devices
Work with customers to form and fix appropriate policy and signature rules. This comprises tuning and development of the creation of custom intrusion detection and SIEM signatures and rules, including the efficient on-boarding and understanding of varying customer log sources into SIEM environments
Work in collaboration with appropriate stakeholders to ensure customers have devices that are fully operational and secure
Act under authorization from engineering to maintain the configuration and have a comprehensive understanding and technical know-how in server administration, including GPO deployment, patching, and network device configuration, and hardware management (including cable management)
Work under strict change control processes to ensure only authorized changes are made to devices
مهارتهای مورد نیاز
- امنیت اطلاعات
- امنیت شبکه
- gisp
- cissp
- CISM
حداقل سابقه کار
- سه تا شش سال
جنسیت
- مهم نیست
وضعیت نظام وظیفه
- مهم نیست