Vacancies

Qualifications:

Bachelor's degree in Computer Engineering or IT field

Experience:

10+ years of experience in IT Security including mandatory 5+ years of relevant experience in IT Security

5+ years combined experience with application, database, network and perimeter security, SIEM, incident response; hands on experience with SIEM, DPI, GRC, Antivirus, Intrusion Detection Systems, HIPS, Web Proxy/Content Filtering, Active Directory, PKI, Radius, MFA solutions

Skills:

Networking Skills - Strong experience in Windows and *nix environments. Excellent understanding of TCP/IP and network communications. Strong network administration skills. Packet-level behavioural familiarity with most major TCP/IP application protocols (DNS, SMTP, HTTP, BGP, LDAP, IMAP, SSH, FTP, KRB5, DHCP, CIFS). General understanding of key components of internet architecture.

Incident Handling - Excellent computer security incident handling, analytical and communication skills. Familiarity with interpreting the log output of a wide selection of device classes including networking and host Infrastructure devices. In depth knowledge of computer security forensics and security vulnerabilities. Broad knowledge of business-impacting security scenarios and viable methods to detect these scenarios (Cross device log correlation)

Operating Systems - Strong systems administration skills. Conceptual knowledge of operating system internals (file handles, threads, semaphores, stack, heap, entry points). Implementation experience with general enterprise core service types (web/mail/dns/file servers)

Security Tools & Technologies - Well versed and 5+ years hands on in multiple security technologies such as SIEM, DPI, GRC, Antivirus, Intrusion Detection Systems, HIPS, Web Proxy/Content Filtering, Active Directory, PKI, Radius, MFA solutions

Deep knowledge of OWASP Top 10, CWE/SANS Top 25, WASC

Understanding of log analysis and security forensics

Professional certifications in information security such as CISSP preferred

Product certification from vendors like, Microsoft, PaloAlto, Fortinet, F5, Carbon Black etc are desirable

Innovative and conceptual thinking, Analytical, Communication

Team Management, Project Management, Planning and organising, Change management

Effective coaching and mentoring

​Qualifications:

Bachelor's degree in Computer Engineering or IT field

Experience:

10+ years of experience in IT Security including mandatory 5+ years of relevant experience in IT Security

5+ years combined experience with application, database, network and perimeter security, SIEM, incident response; hands on experience with SIEM, DPI, GRC, Antivirus, Intrusion Detection Systems, HIPS, Web Proxy/Content Filtering, Active Directory, PKI, Radius, MFA solutions

Skills:

Networking Skills - Strong experience in Windows and *nix environments. Excellent understanding of TCP/IP and network communications. Strong network administration skills. Packet-level behavioural familiarity with most major TCP/IP application protocols (DNS, SMTP, HTTP, BGP, LDAP, IMAP, SSH, FTP, KRB5, DHCP, CIFS). General understanding of key components of internet architecture.

Incident Handling - Excellent computer security incident handling, analytical and communication skills. Familiarity with interpreting the log output of a wide selection of device classes including networking and host Infrastructure devices. In depth knowledge of computer security forensics and security vulnerabilities. Broad knowledge of business-impacting security scenarios and viable methods to detect these scenarios (Cross device log correlation)

Operating Systems - Strong systems administration skills. Conceptual knowledge of operating system internals (file handles, threads, semaphores, stack, heap, entry points). Implementation experience with general enterprise core service types (web/mail/dns/file servers)

Security Tools & Technologies - Well versed and 5+ years hands on in multiple security technologies such as SIEM, DPI, GRC, Antivirus, Intrusion Detection Systems, HIPS, Web Proxy/Content Filtering, Active Directory, PKI, Radius, MFA solutions

Deep knowledge of OWASP Top 10, CWE/SANS Top 25, WASC

Understanding of log analysis and security forensics

Professional certifications in information security such as CISSP preferred

Product certification from vendors like, Microsoft, PaloAlto, Fortinet, F5, Carbon Black etc are desirable

Innovative and conceptual thinking, Analytical, Communication

Team Management, Project Management, Planning and organising, Change management

Effective coaching and mentoring

​JOB OBJECTIVE:

Assisting head of IT Security in performing the information security management functions.

Lead a team of IT Security Engineers providing around-the-clock protection and cyber defence of WOQOD's global network of applications and data from threats from cyberspace

Description

Supervision of Subordinates

Organise and supervise the activities and work of subordinates (IT Security analysts) to ensure that all work within a specific area of the activity is carried out in an efficient manner which is consistent with operating procedures and policy. Provide on-the-job training and constructive feedback to subordinates to support their overall development.

Budgets and Plans

Contribute to the preparation of the budget and monitor financial performance versus the budget so that the business is aware of anticipated costs/revenues and areas of unsatisfactory performance are identified.

Scope of Work

Lead the IT Security function for the business, managing the IT Security Engineers and ensuring their work and output aligns to the organisational priorates.

Collaborate with other Security Engineers, Incident Response Analysts, and the Head of IT Security to develop detection logic, implement automation and machine learning, and improve processes

Participate in information security operations duties, including occasional incident response escalations.

Inspection of Security Breaches

Review violations of systems security procedures and discuss procedures with violators to ensure violations are not repeated; escalate the case in case of a high-level security breach or violation to the IT Cyber Security Head so that proper action can be taken.

Network, Systems & Infrastructure security

Develop, maintain and enhance enterprise security architecture. Assess current technology architecture for vulnerabilities, weaknesses and for possible upgrades or improvement Responsible for configuring, setting up and maintaining perimeter defence systems including Perimeter Nextgen Firewall, Email security Gateway, IPS systems, Remote access VPN, WAF

Maintains a thorough understanding of the security infrastructure in WOQOD and the basics behind the Internet and its workings (DNS, LAN, Security, IP Routing, HTTP, VPN, Email Routing, SPAM, etc.)

​JOB OBJECTIVE:

Assisting head of IT Security in performing the information security management functions.

Lead a team of IT Security Engineers providing around-the-clock protection and cyber defence of WOQOD's global network of applications and data from threats from cyberspace

Description

Supervision of Subordinates

Organise and supervise the activities and work of subordinates (IT Security analysts) to ensure that all work within a specific area of the activity is carried out in an efficient manner which is consistent with operating procedures and policy. Provide on-the-job training and constructive feedback to subordinates to support their overall development.

Budgets and Plans

Contribute to the preparation of the budget and monitor financial performance versus the budget so that the business is aware of anticipated costs/revenues and areas of unsatisfactory performance are identified.

Scope of Work

Lead the IT Security function for the business, managing the IT Security Engineers and ensuring their work and output aligns to the organisational priorates.

Collaborate with other Security Engineers, Incident Response Analysts, and the Head of IT Security to develop detection logic, implement automation and machine learning, and improve processes

Participate in information security operations duties, including occasional incident response escalations.

Inspection of Security Breaches

Review violations of systems security procedures and discuss procedures with violators to ensure violations are not repeated; escalate the case in case of a high-level security breach or violation to the IT Cyber Security Head so that proper action can be taken.

Network, Systems & Infrastructure security

Develop, maintain and enhance enterprise security architecture. Assess current technology architecture for vulnerabilities, weaknesses and for possible upgrades or improvement Responsible for configuring, setting up and maintaining perimeter defence systems including Perimeter Nextgen Firewall, Email security Gateway, IPS systems, Remote access VPN, WAF

Maintains a thorough understanding of the security infrastructure in WOQOD and the basics behind the Internet and its workings (DNS, LAN, Security, IP Routing, HTTP, VPN, Email Routing, SPAM, etc.)