JOB
OBJECTIVE:
To conduct ongoing security monitoring for
applications running on Woqod’s IT systems as per the established guidelines and procedures;
assess risks to IT security, and proactively highlight non conformances to facilitate the development of a secure IT
environment across Woqod.
Description
Security Policies & Procedures
Implement relevant security protocols for all new applications & systems installed at woqod to ensure compliance to the security policies & procedures; effective integration & consistency with the existing protocols.
Develop and maintain IS policy, standards, procedures and guidelines to support the organizations' information security program.
Inspection of Security Breaches
Review violations of applications security procedures and discuss procedures with violators to ensure violations are not repeated; escalate the case in case of a high level security breach or violation to the IT Security Head so that proper action can be taken
Good knowledge and understanding of security software / tools, such as Antivirus, SIEM, DLP, MDM, IDAM, PIM, MFA, NAC and data encryption etc., to protect organizational information
Analyze logs to identify attack trends.
Review in-house and 3rd-party applications/code for security vulnerabilities and best practices.
GRC Activities
Conduct information security risk assessments by following the Woqod internal risk assessment methodology and template.
Day to day evaluation of adherence to Woqod internal information security controls.
Identify weaknesses in the in place operational processes, systems and network and escalating these observations for management prioritization.
Promote information security awareness by providing hands on training and mentoring in the areas of GRC.
Work with a multi discipline team to create a solid information technology infrastructure and collaborate with teams to ensure that the relevant policies and procedures are implemented