Implement and maintain security including Cloud Security Solutions from AWS, next generation firewalls, application firewall/DDoS, container security and the Web Application Firewall (WAF).
Configure, implement, and support security software/systems that will help ensure compliance in AWS cloud environments.
Update security tools for logging/monitoring and increasing coverage of existing tools.
Conducting security assessments and audits to locate and address vulnerabilities
Create and maintain data security documentation, policies and procedures.
Compliance knowledge
Ensure compliance with relevant laws, regulations and industry standards pertaining to cyber defense and incident response.
Collaborate with legal, compliance, and risk management teams to address cybersecurity and data protection requirements
Develop metrics and key performance indicators (KPIs) to measure and report on the effectiveness of cyber defense operations
Requirements
Minimum Degree in Computer Science, Engineering or equivalent
Preferably with one or more of the related certification in the areas of Cyber Security/Information Security CISSP, CEH, CISM, Comptia CYSA+, GIAC GCFA, GCTI, GCIH and GREM or other relevant certifications
Solutions Architect - Associate or Professional, AWS Security Speciality
Minimum of 4 years experience in implementation and operationalizing cloud security solutions/infrastructure
Manage and lead the Threat Prevention teams of Perimeter & Network Security, Server, Endpoint & Mobile Security, Cloud Security and Data Loss / Leakage Prevention (DLP)
Oversee plan, design, implementation, testing and operation of the cyber security processes and systems
Work closely with the Head of Cyber Security to build and mature the Threat Prevention Strategy including tooling and processes
Recognize, adopt and instill best practices in security engineering and operations through the threat prevention controls
Manage team of cybersecurity professionals responsible for monitoring, detecting, and responding to cybersecurity threats
Oversee the day-to-day operations of cyber defense systems, such as perimeter and network security, intrusion detection systems (IDS), endpoint detection and response (EDR/MDR) tools, and/or data loss prevention (DLP)
Ensure effective incident response processes and procedures are in place, including incident triage, containment, investigation, and remediation
Coordinate with internal teams and external partners for threat intelligence sharing and collaboration on incident response activities
Monitor and analyze security event logs, network traffic, and system behavior for indicators of potential security incidents or breaches
Implement and manage security monitoring tools and technologies to enhance threat detection capabilities